CVSS: 6.5EPSS: 1%CPEs: 55EXPL: 0CVE-2012-2879
https://notcve.org/view.php?id=CVE-2012-2879
26 Sep 2012 — Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service (DOM topology corruption) via a crafted document. Google Chrome anterior a v22.1229.79 permite a a atacantes remotos provocar una denegación de servicio (corrupción de topología DOM) a través de un documento manipulado. • http://googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 53EXPL: 0CVE-2012-2890
https://notcve.org/view.php?id=CVE-2012-2890
26 Sep 2012 — Use-after-free vulnerability in the PDF functionality in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document. Vulnerabilida de error en la gestión de recursos en la funcionalidad PDF en Google Chrome antes de v22.0.1229.79, permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto no especificado a través de un documento manipulado. • http://googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 55EXPL: 0CVE-2012-2876
https://notcve.org/view.php?id=CVE-2012-2876
26 Sep 2012 — Buffer overflow in the SSE2 optimization functionality in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Vulnerabilidad de desbordamiento de búfer en la optimización de la funcionalidad SSE2 en Google Chrome anterior a v22.0.1229.79, permite a atacantes remotos provocar una denegación de servicio u otro tipo de impacto a través de vectores desconocidos. • http://googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.1EPSS: 0%CPEs: 53EXPL: 0CVE-2012-2892
https://notcve.org/view.php?id=CVE-2012-2892
26 Sep 2012 — Unspecified vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to bypass the pop-up blocker via unknown vectors. Vulnerabilidad no especificada en Google Chrome anteriores a v22.0.1229.79 permite a atacantes remotos evitar el bloqueo del menú desplegable mediante vectores desconocidos. • http://googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html •
CVSS: 9.8EPSS: 1%CPEs: 53EXPL: 0CVE-2012-2893 – libxslt: Heap-double-free in xmlFreeNodeList
https://notcve.org/view.php?id=CVE-2012-2893
26 Sep 2012 — Double free vulnerability in libxslt, as used in Google Chrome before 22.0.1229.79, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XSL transforms. Vulnerabilidad de doble liberación en libxslt en Google Chrome anterior a 22.0.1229.79, permite a atacantes remotos provocar una denegación de servicio u otro tipo de impacto a través de vectores relacionados con las transformaciones XSL. Multiple Denial of Service vulnerabilities have been fo... • http://git.chromium.org/gitweb/?p=chromium.git%3Ba=commit%3Bh=9a5da8e7d4b6f3454614b0331a51bf29c966f556 • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 68%CPEs: 70EXPL: 0CVE-2012-2897
https://notcve.org/view.php?id=CVE-2012-2897
26 Sep 2012 — The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT, as used by Google Chrome before 22.0.1229.79 and other programs, do not properly handle objects in memory, which allows remote attackers to execute arbitrary code via a crafted TrueType font file, aka "Windows Font Parsing Vulnerability" or "TrueType Font Parsing Vulnerability." Los controlado... • http://googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 54EXPL: 0CVE-2012-2869
https://notcve.org/view.php?id=CVE-2012-2869
31 Aug 2012 — Google Chrome before 21.0.1180.89 does not properly load URLs, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a "stale buffer." Google Chrome anterior a v21.0.1180.89 no carga correctamente las direcciones URL, permitiendo a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores que provocan un "colchón viejo." • http://code.google.com/p/chromium/issues/detail?id=137778 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.1EPSS: 0%CPEs: 54EXPL: 0CVE-2012-2872
https://notcve.org/view.php?id=CVE-2012-2872
31 Aug 2012 — Cross-site scripting (XSS) vulnerability in an SSL interstitial page in Google Chrome before 21.0.1180.89 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Una vulnerabilidad de ejecución de comandos en sitios cruzados (XSS) en una página SSL intersticial en Google Chrome antes de v21.0.1180.89 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=142956 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.1EPSS: 1%CPEs: 54EXPL: 0CVE-2012-2868
https://notcve.org/view.php?id=CVE-2012-2868
31 Aug 2012 — Race condition in Google Chrome before 21.0.1180.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving improper interaction between worker processes and an XMLHttpRequest (aka XHR) object. Condición de carrera en Google Chrome antes de v21.0.1180.89 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con una interacción inadecuada entre los procesos ... • http://code.google.com/p/chromium/issues/detail?id=136881 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.5EPSS: 1%CPEs: 54EXPL: 0CVE-2012-2867
https://notcve.org/view.php?id=CVE-2012-2867
31 Aug 2012 — The SPDY implementation in Google Chrome before 21.0.1180.89 allows remote attackers to cause a denial of service (application crash) via unspecified vectors. La implementación SPDY en Google Chrome anterior a v21.0.1180.89 permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=135485 •