Page 335 of 3367 results (0.015 seconds)

CVSS: 6.5EPSS: 5%CPEs: 1EXPL: 2

18 Aug 2009 — Google Chrome 0.2.149.27 allows user-assisted remote attackers to cause a denial of service (browser crash) via an IMG tag with a long src attribute, which triggers the crash when the victim performs an "Inspect Element" action. Google Chrome v0.2.149.27 permite a atacantes asistidos remotamente causar una denegación de servicio (caída buscador) a través de la etiqueta IMG con un atributo largo src, que deriva en la caída cuando la victima realiza una acción "Inspect Element" • https://www.exploit-db.com/exploits/6386 •

CVSS: 6.5EPSS: 3%CPEs: 1EXPL: 7

18 Aug 2009 — Integer underflow in net/base/escape.cc in chrome.dll in Google Chrome 0.2.149.27 allows remote attackers to cause a denial of service (browser crash) via a URI with an invalid handler followed by a "%" (percent) character, which triggers a buffer over-read, as demonstrated using an "about:%" URI. Desbordamiento inferior de entero en net/base/escape.cc en chrome.dll en Google Chrome v0.2.149.27 pemite a atacantes remotos causar una denegación de servicio (caída buscador) a través de un URI con un manejador ... • https://www.exploit-db.com/exploits/6353 • CWE-189: Numeric Errors •

CVSS: 9.3EPSS: 26%CPEs: 1EXPL: 4

18 Aug 2009 — Stack-based buffer overflow in chrome/common/gfx/url_elider.cc in Google Chrome 0.2.149.27 and other versions before 0.2.149.29 might allow user-assisted remote attackers to execute arbitrary code via a link target (href attribute) with a large number of path elements, which triggers the overflow when the status bar is updated after the user hovers over the link. Desbordamiento de búfer basado en pila en chrome/common/gfx/url_elider.cc en Google Chrome v0.2.149.27 y otras versiones anteriores a v0.2.149.29,... • https://www.exploit-db.com/exploits/6372 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 6.5EPSS: 18%CPEs: 1EXPL: 2

18 Aug 2009 — Google Chrome BETA (0.2.149.27) does not prompt the user before saving an executable file, which makes it easier for remote attackers or malware to cause a denial of service (disk consumption) or exploit other vulnerabilities via a URL that references an executable file, possibly related to the "ask where to save each file before downloading" setting. Google Chrome BETA (v0.2.149.27) no pide confirmacion al usuario antes de descargar un fichero ejecutable, lo cual facilita a atacantes remotos o malware prod... • https://www.exploit-db.com/exploits/6355 •

CVSS: 9.3EPSS: 25%CPEs: 1EXPL: 8

18 Aug 2009 — Stack-based buffer overflow in the SaveAs feature (SaveFileAsWithFilter function) in win_util.cc in Google Chrome 0.2.149.27 allows user-assisted remote attackers to execute arbitrary code via a web page with a long TITLE element, which triggers the overflow when the user saves the page and a long filename is generated. NOTE: it might be possible to exploit this issue via an HTTP response that includes a long filename in a Content-Disposition header. Un desbordamiento del búfer en la región stack de la memo... • https://www.exploit-db.com/exploits/6367 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 6.5EPSS: 0%CPEs: 38EXPL: 0

11 Aug 2009 — Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allow context-dependent attackers to cause a denial of service (application crash) via crafted (1) Notation or (2) Enumeration attribute types in an XML file, as demonstrated by the Codenomicon XML fuzzing framework. Múltiples vulnerabilidades de uso anterior a la liberación en libxml2 v2.5.10, v2.6.16, v2.6.26, v2.6.27, y v2.6.32, y libxml v1.8.17, permite a atacantes dependientes de contexto p... • http://googlechromereleases.blogspot.com/2009/08/stable-update-security-fixes.html • CWE-416: Use After Free •

CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0

22 Jul 2009 — Google Chrome 2.x through 2.0.172 allows remote attackers to cause a denial of service (application crash) via a long Unicode string argument to the write method, a related issue to CVE-2009-2479. Google Chrome v2.x a 2.0.172 permite a atacantes remotos causar una denegación de servicios (caída de aplicación)a través de un argumento de cadena de caracteres Unicode larga para el método de escritura, siendo un asunto relacionado con CVE-2009-2479. • http://websecurity.com.ua/3338 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 9.3EPSS: 7%CPEs: 29EXPL: 0

21 Jul 2009 — Heap-based buffer overflow in src/jsregexp.cc in Google V8 before 1.1.10.14, as used in Google Chrome before 2.0.172.37, allows remote attackers to execute arbitrary code in the Chrome sandbox via a crafted JavaScript regular expression. Desbordamiento de búfer basado en memoria dinámica en src/jsregexp.cc en Google V8 anterior a v1.1.10.14, como el utilizado en Google Chrome anterior a v2.0.172.37, permite a atacantes remotos ejecutar código de su elección en el Chrome sandbox a través de una expresión reg... • http://code.google.com/p/chromium/issues/detail?id=14719 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 9.3EPSS: 0%CPEs: 28EXPL: 0

21 Jul 2009 — Google Chrome before 2.0.172.37 allows attackers to leverage renderer access to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors that trigger excessive memory allocation. Google Chrome anterior a v2.0.172.37, permite a atacantes remotos el aprovechar el acceso "renderer" para provocar una denegación de servicio (corrupción de memoria y caída de aplicación) o posiblemente ejecutar código de su elección a través de vectores no espec... • http://googlechromereleases.blogspot.com/2009/07/stable-beta-update-bug-fixes.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 6.1EPSS: 0%CPEs: 16EXPL: 2

07 Jul 2009 — Google Chrome 1.0.154.48 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header, a related issue to CVE-2009-1312. NOTE: it was later reported that 2.0.172.28, 2.0.172.37, and 3.0.193.2 Beta are also affected. Chrome de Google versiones 1.0.154.48 y anteriores, no bloquea los URI javascript: en encabezad... • https://www.exploit-db.com/exploits/33064 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •