NotCVE - vendor:"Google" product:"Chrome" version:"19.0.1084.11"

Page 191 of 2778 results (0.010 seconds)

CVSS: 6.1EPSS: 0%CPEs: 9EXPL: 0

CVE-2017-5069 – chromium-browser: cross-origin bypass in blink

https://notcve.org/view.php?id=CVE-2017-5069

25 Apr 2017 — Incorrect MIME type of XSS-Protection reports in Blink in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac, and 58.0.3029.83 for Android, allowed a remote attacker to circumvent Cross-Origin Resource Sharing checks via a crafted HTML page. Un tipo MIME incorrecto de informes XSS-Protection en Blink en Google Chrome, en versiones anteriores a la 58.0.3029.81 para Linux, Windows y Mac y a la 58.0.3029.83 para Android, permitía que un atacante remoto sortease las comprobaciones Cross-Origin Reso... • http://www.securityfocus.com/bid/97939 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 8.8EPSS: 1%CPEs: 9EXPL: 0

CVE-2017-5057 – chromium-browser: type confusion in pdfium

https://notcve.org/view.php?id=CVE-2017-5057

25 Apr 2017 — Type confusion in PDFium in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and 58.0.3029.83 for Android, allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file. Verificaciones insuficientes de consistencia en la manipulación de firmas en la pila de red en Google Chrome, en versiones anteriores a la 58.0.3029.81 para Mac, Windows y Linux y a la 58.0.3029.83 para Android, permitían que un atacante remoto aceptase un certificado X.509 mal formado mediante una... • http://www.securityfocus.com/bid/97939 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 8.8EPSS: 20%CPEs: 9EXPL: 0

CVE-2017-5059 – Google Chrome List Item Marker Type Confusion Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2017-5059

25 Apr 2017 — Type confusion in Blink in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac, and 58.0.3029.83 for Android, allowed a remote attacker to potentially obtain code execution via a crafted HTML page. Una confusión de tipos en Blink en Google Chrome, en versiones anteriores a la 58.0.3029.81 para Linux, Windows y Mac y a la 58.0.3029.83 para Android, permitía que un atacante remoto pudiese ejecutar código mediante una página HTML manipulada. This vulnerability allows remote attackers to execute arb... • http://www.securityfocus.com/bid/97939 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0

CVE-2017-5058 – chromium-browser: heap use after free in print preview

https://notcve.org/view.php?id=CVE-2017-5058

25 Apr 2017 — A use after free in PrintPreview in Google Chrome prior to 58.0.3029.81 for Windows allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Un uso de memoria previamente liberada en PrintPreview en Google Chrome, en versiones anteriores a la 58.0.3029.81 para Windows, permitía que un atacante remoto pudiese realizar un acceso a la memoria fuera de límites mediante una página HTML manipulada. • http://www.securityfocus.com/bid/97939 • CWE-416: Use After Free •

CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0

CVE-2017-5064 – chromium-browser: use after free in blink

https://notcve.org/view.php?id=CVE-2017-5064

25 Apr 2017 — Incorrect handling of DOM changes in Blink in Google Chrome prior to 58.0.3029.81 for Windows allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una gestión incorrecta de cambios de DOM en Blink en Google Chrome, en versiones anteriores a la 58.0.3029.81 para Windows, permitía que un atacante remoto explotase una corrupción de la memoria dinámica (heap) mediante una página HTML manipulada. • http://www.securityfocus.com/bid/97939 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •