CVSS: 9.8EPSS: 1%CPEs: 6EXPL: 0CVE-2011-1293
https://notcve.org/view.php?id=CVE-2011-1293
25 Mar 2011 — Use-after-free vulnerability in the HTMLCollection implementation in Google Chrome before 10.0.648.204 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Vulnerabilidad uso después de liberación en la aplicación HTMLCollection en Google Chrome antes de v10.0.648.204 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores desconocidos. • http://code.google.com/p/chromium/issues/detail?id=73595 • CWE-416: Use After Free •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2011-1294
https://notcve.org/view.php?id=CVE-2011-1294
25 Mar 2011 — Google Chrome before 10.0.648.204 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." Google Chrome antes de v10.0.648.204 no controla correctamente las secuencias de token CSS (Cascading Style Sheet), lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectore... • http://code.google.com/p/chromium/issues/detail?id=74562 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2011-1295
https://notcve.org/view.php?id=CVE-2011-1295
25 Mar 2011 — WebKit, as used in Google Chrome before 10.0.648.204 and Apple Safari before 5.0.6, does not properly handle node parentage, which allows remote attackers to cause a denial of service (DOM tree corruption), conduct cross-site scripting (XSS) attacks, or possibly have unspecified other impact via unknown vectors. WebKit, tal y como es usado en Google Chrome anterior a versión 10.0.648.204 y Apple Safari anterior a la versión 5.0.6, no maneja apropiadamente el parentesco entre nodos, lo que permite a los atac... • http://code.google.com/p/chromium/issues/detail?id=74991 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 2%CPEs: 4EXPL: 0CVE-2011-1296
https://notcve.org/view.php?id=CVE-2011-1296
25 Mar 2011 — Google Chrome before 10.0.648.204 does not properly handle SVG text, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." Google Chrome antes de v10.0.648.204 no controla correctamente el texto SVG, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores desconocidos que dan lugar a un puntero bloqueado. • http://code.google.com/p/chromium/issues/detail?id=75170 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2011-1465
https://notcve.org/view.php?id=CVE-2011-1465
20 Mar 2011 — The SPDY implementation in net/http/http_network_transaction.cc in Google Chrome before 11.0.696.14 drains the bodies from SPDY responses, which might allow remote SPDY servers to cause a denial of service (application exit) by canceling a stream. La implementación de SPDY en net/http/http_network_transaction.cc en Google Chrome anterior a v11.0.696.14 desecha los cuerpos de las respuestas SPDY, lo que podría permitir a servidores remotos SPDY causar una denegación de servicio (salida de la aplicación) medi... • http://code.google.com/p/chromium/issues/detail?id=75657 •
CVSS: 9.3EPSS: 97%CPEs: 26EXPL: 1CVE-2011-0609 – Adobe Flash Player Unspecified Vulnerability
https://notcve.org/view.php?id=CVE-2011-0609
15 Mar 2011 — Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and a... • https://www.exploit-db.com/exploits/17027 •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 2CVE-2011-1185
https://notcve.org/view.php?id=CVE-2011-1185
11 Mar 2011 — Google Chrome before 10.0.648.127 does not prevent (1) navigation and (2) close operations on the top location of a sandboxed frame, which has unspecified impact and remote attack vectors. Google Chrome en versiones anteriores a la 10.0.648.127 no previene (1) la navegación y (2) operaciones de cierre en la localización superior de un frame que se ejecuta en una sandbox, lo que tiene un impacto sin especificar y vectores de ataque remotos. • http://code.google.com/p/chromium/issues/detail?id=42574 •
CVSS: 6.5EPSS: 2%CPEs: 2EXPL: 1CVE-2011-1186
https://notcve.org/view.php?id=CVE-2011-1186
11 Mar 2011 — Google Chrome before 10.0.648.127 on Linux does not properly handle parallel execution of calls to the print method, which might allow remote attackers to cause a denial of service (application crash) via crafted JavaScript code. Google Chrome en versiones anteriores a la 10.0.648.127 en Linux no maneja apropiadamente la ejecución paralela de llamadas al método print, lo que permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) a través de un código JavaScript modificado. • http://code.google.com/p/chromium/issues/detail?id=66962 • CWE-20: Improper Input Validation •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 2CVE-2011-1187
https://notcve.org/view.php?id=CVE-2011-1187
11 Mar 2011 — Google Chrome before 10.0.648.127 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, related to an "error message leak." Google Chrome en versiones anteriores a la 10.0.648.127 permite a atacantes remotos evitar la política de mismo origen ("Same Origin Policy") a través de vectores sin especificar. Relacionado con un "error message leak". • http://code.google.com/p/chromium/issues/detail?id=69187 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 1%CPEs: 4EXPL: 1CVE-2011-1188
https://notcve.org/view.php?id=CVE-2011-1188
11 Mar 2011 — Google Chrome before 10.0.648.127 does not properly handle counter nodes, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. Google Chrome anterior a v10.0.648.127, no maneja correctamente los nodos de contadores, lo que permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o posiblemente tener otro impacto no especificado a través de vectores desconocidos. • http://code.google.com/p/chromium/issues/detail?id=69628 •