NotCVE - vendor:"Google" product:"Chrome" version:"6.0.494.0"

Page 190 of 3188 results (0.017 seconds)

CVSS: 8.8EPSS: 0%CPEs: 9EXPL: 0

CVE-2017-5071 – chromium-browser: out of bounds read in v8

https://notcve.org/view.php?id=CVE-2017-5071

06 Jun 2017 — Insufficient validation of untrusted input in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows and Mac, and 59.0.3071.92 for Android allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Una validación insuficiente de entradas no fiables en V8 en Google Chrome, en versiones anteriores a la 59.0.3071.86 para Linux, Windows y Mac y a la 59.0.3071.92 para Android, permitía que un atacante remoto realizase una lectura de memoria fuera de límites mediante una pági... • http://www.securityfocus.com/bid/98861 • CWE-20: Improper Input Validation •

CVSS: 8.8EPSS: 82%CPEs: 9EXPL: 1

CVE-2017-5070 – Google Chromium V8 Type Confusion Vulnerability

https://notcve.org/view.php?id=CVE-2017-5070

06 Jun 2017 — Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3071.92 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Una confusión de tipos en V8 en Google Chrome, en versiones anteriores a la 59.0.3071.86 para Linux, Windows y Mac y a la 59.0.3071.92 para Android, permitía que un atacante remoto ejecutase código arbitrario dentro de un espacio aislado o sandbox mediante una página HTML manipulada. Chromium is an... • http://www.securityfocus.com/bid/98861 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 6.5EPSS: 0%CPEs: 9EXPL: 0

CVE-2017-5076 – chromium-browser: address spoofing in omnibox

https://notcve.org/view.php?id=CVE-2017-5076

06 Jun 2017 — Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 59.0.3071.86 for Mac, Windows, and Linux, and 59.0.3071.92 for Android, allowed a remote attacker to perform domain spoofing via IDN homographs in a crafted domain name. La falta de mecanismos suficientes para el cumplimiento de políticas en Omnibox en Google Chrome en versiones anteriores a la 59.0.3071.86 para Mac, Windows y Linux y a la 59.0.3071.92 para Android, permitía que un atacante remoto realizase una suplantación de dominio medi... • http://www.securityfocus.com/bid/98861 • CWE-20: Improper Input Validation •

CVSS: 6.5EPSS: 0%CPEs: 10EXPL: 0

CVE-2017-5081 – chromium-browser: extension verification bypass

https://notcve.org/view.php?id=CVE-2017-5081

06 Jun 2017 — Lack of verification of an extension's locale folder in Google Chrome prior to 59.0.3071.86 for Mac, Windows, and Linux, and 59.0.3071.92 for Android, allowed an attacker with local write access to modify extensions by modifying extension files. Una falta de verificación de la carpeta locale de una extensión en Google Chrome, en versiones anteriores a la 59.0.3071.86 para Mac, Windows y Linux y a la 59.0.3071.92 para Android, permitía que un atacante con acceso de escritura local modificase extensiones medi... • http://www.securityfocus.com/bid/98861 • CWE-20: Improper Input Validation •

CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0

CVE-2017-5068 – chromium-browser: race condition in webrtc

https://notcve.org/view.php?id=CVE-2017-5068

11 May 2017 — Incorrect handling of picture ID in WebRTC in Google Chrome prior to 58.0.3029.96 for Mac, Windows, and Linux allowed a remote attacker to trigger a race condition via a crafted HTML page. Una gestión incorrecta del ID de imagen en WebRTC en Google Chrome, en versiones anteriores a la 58.0.3029.96 para Mac, Windows y Linux, permitía que un atacante remoto desencadenase una condición de carrera mediante una página HTML manipulada. Chromium is an open-source web browser, powered by WebKit. This update upgrade... • http://www.securityfocus.com/bid/98288 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •