CVSS: 9.3EPSS: 1%CPEs: 7EXPL: 1CVE-2011-0480
https://notcve.org/view.php?id=CVE-2011-0480
14 Jan 2011 — Multiple buffer overflows in vorbis_dec.c in the Vorbis decoder in FFmpeg, as used in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted WebM file, related to buffers for (1) the channel floor and (2) the channel residue. Múltiples desbordamientos de búfer en el decodificador Vorbis en Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8... • http://article.gmane.org/gmane.comp.video.ffmpeg.devel/122703 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.3EPSS: 1%CPEs: 2EXPL: 1CVE-2011-0472
https://notcve.org/view.php?id=CVE-2011-0472
14 Jan 2011 — Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle the printing of PDF documents, which allows user-assisted remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a multi-page document. Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 no controlan correctamente la impresión de documentos PDF, lo que permite a atacantes remotos ayudados por un usuario local provocar una denegación de servicio ... • http://code.google.com/p/chromium/issues/detail?id=66334 •
CVSS: 10.0EPSS: 2%CPEs: 2EXPL: 1CVE-2011-0478
https://notcve.org/view.php?id=CVE-2011-0478
14 Jan 2011 — Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle SVG use elements, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 no manejan adecuadamente los elementos de uso de SVG, lo que permite provocar a atacantes remotos una denegación de servicio o posiblemente tener un impacto no especificado a través ... • http://code.google.com/p/chromium/issues/detail?id=67363 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 1%CPEs: 2EXPL: 0CVE-2011-0471
https://notcve.org/view.php?id=CVE-2011-0471
14 Jan 2011 — The node-iteration implementation in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 does not properly handle pointers, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. La implementación de iteración de nodos en Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 no controla correctamente los punteros, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impa... • http://code.google.com/p/chromium/issues/detail?id=65764 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 1CVE-2011-0470
https://notcve.org/view.php?id=CVE-2011-0470
14 Jan 2011 — Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle extensions notification, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors. Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 no gestiona debidamente la notificación de extensiones, lo que permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=58053 •
CVSS: 10.0EPSS: 8%CPEs: 2EXPL: 0CVE-2011-0485
https://notcve.org/view.php?id=CVE-2011-0485
14 Jan 2011 — Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle speech data, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "stale pointer." Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 no manejan correctamente datos de voz, lo que permite a atacantes remotos ejecutar código arbitrario a través de vectores no especificados que provocan punteros bloqueados. • http://code.google.com/p/chromium/issues/detail?id=68666 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 1%CPEs: 4EXPL: 0CVE-2011-0482 – Gentoo Linux Security Advisory 201412-09
https://notcve.org/view.php?id=CVE-2011-0482
14 Jan 2011 — Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of anchors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted HTML document. Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 no realiza correctamente la conversión de una variable no especificada durante la manipulación de los enlaces HTML, lo que permite a atacantes remotos provocar ... • http://code.google.com/p/chromium/issues/detail?id=68178 • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 10.0EPSS: 1%CPEs: 4EXPL: 1CVE-2011-0474
https://notcve.org/view.php?id=CVE-2011-0474
14 Jan 2011 — Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets (CSS) token sequences in conjunction with cursors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 no controla correctamente las secuencias de tokens CSS (Cascading Style Sheets) junto con cursores, lo que permite a atacantes... • http://code.google.com/p/chromium/issues/detail?id=66748 •
CVSS: 9.3EPSS: 1%CPEs: 2EXPL: 0CVE-2011-0475
https://notcve.org/view.php?id=CVE-2011-0475
14 Jan 2011 — Use-after-free vulnerability in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a PDF document. Vulnerabilidad de uso después de liberación en Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de un documento PDF. • http://code.google.com/p/chromium/issues/detail?id=67100 • CWE-416: Use After Free •
CVSS: 7.5EPSS: 1%CPEs: 6EXPL: 1CVE-2010-4577 – webkit: CSS Font Face Parsing Type Confusion Vulnerability
https://notcve.org/view.php?id=CVE-2010-4577
22 Dec 2010 — The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." Google Chrome anterior v8.0.552.224 y Chrome OS anterior v8.0.552.343 no parsea adecuadamente la secuencia d... • http://code.google.com/p/chromium/issues/detail?id=63866 • CWE-125: Out-of-bounds Read CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •