CVSS: 6.1EPSS: 0%CPEs: 16EXPL: 2CVE-2009-2352 – Google Chrome 0.3.154 - 'JavaScript:' URI in 'Refresh' Header Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2009-2352
07 Jul 2009 — Google Chrome 1.0.154.48 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header, a related issue to CVE-2009-1312. NOTE: it was later reported that 2.0.172.28, 2.0.172.37, and 3.0.193.2 Beta are also affected. Chrome de Google versiones 1.0.154.48 y anteriores, no bloquea los URI javascript: en encabezad... • https://www.exploit-db.com/exploits/33064 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.3EPSS: 0%CPEs: 24EXPL: 1CVE-2009-2121
https://notcve.org/view.php?id=CVE-2009-2121
23 Jun 2009 — Buffer overflow in the browser kernel in Google Chrome before 2.0.172.33 allows remote HTTP servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted response. Desbordamiento de búfer en el núcleo del navegador en Google Chrome en versiones anteriores a la v2.0.172.33 permite a los servidores HTTP remotos causar una denegación de servicio (mediante caida de la aplicación) o posiblemente ejecutar código arbitrario a través de una respuesta HTTP modificada. • http://code.google.com/p/chromium/issues/detail?id=14508 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.8EPSS: 0%CPEs: 16EXPL: 0CVE-2009-2071
https://notcve.org/view.php?id=CVE-2009-2071
15 Jun 2009 — Google Chrome before 1.0.154.53 displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a crafted 502 response page upon a subsequent request. Google Chrome anteriores a v1.0.154.53 muestra un certificado cacheado para una página de respuesta de CONEXIÓN (1) 4xx o (2) 5xx a tr... • http://code.google.com/p/chromium/issues/detail?id=7338 • CWE-287: Improper Authentication •
CVSS: 7.4EPSS: 0%CPEs: 16EXPL: 0CVE-2009-2060
https://notcve.org/view.php?id=CVE-2009-2060
15 Jun 2009 — src/net/http/http_transaction_winhttp.cc in Google Chrome before 1.0.154.53 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack. src/net/http/http_transaction_winhttp.cc en Google Chrome anteriores a v1.0.154.53 utiliza una cabecera Host HTTP para determinar el contexto de un documento pr... • http://code.google.com/p/chromium/issues/detail?id=7338 • CWE-287: Improper Authentication •
CVSS: 9.3EPSS: 6%CPEs: 76EXPL: 1CVE-2009-1690 – kdelibs: KHTML Incorrect handling <head> element content once the <head> element was removed (DoS, ACE)
https://notcve.org/view.php?id=CVE-2009-1690
10 Jun 2009 — Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to "recursion in certain DOM event handlers.... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=803 • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 2%CPEs: 22EXPL: 1CVE-2009-1442
https://notcve.org/view.php?id=CVE-2009-1442
07 May 2009 — Multiple integer overflows in Skia, as used in Google Chrome 1.x before 1.0.154.64 and 2.x, and possibly Android, might allow remote attackers to execute arbitrary code in the renderer process via a crafted (1) image or (2) canvas. Múltiples desbodamientos de enteros en Skia, utilizado en Google Chrome v1.x anteriores a v1.0.154.64 y v2.x, y posiblemente Android, debería permitir a los atacantes remotos ejecutar arbitrariamente código en el proceso de renderizado a través de (1) imagenes o (2) canvas manipu... • http://code.google.com/p/chromium/issues/detail?id=10736 • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 0%CPEs: 17EXPL: 1CVE-2009-1441
https://notcve.org/view.php?id=CVE-2009-1441
07 May 2009 — Heap-based buffer overflow in the ParamTraits
CVSS: 6.5EPSS: 7%CPEs: 1EXPL: 2CVE-2009-1514 – Google Chrome 1.0.154.53 - Null Pointer Remote Crash
https://notcve.org/view.php?id=CVE-2009-1514
04 May 2009 — Google Chrome 1.0.154.53 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a throw statement with a long exception value. Google Chrome v1.0.154.53 permite a atacantes remotos provocar una denegación de servicio desreferenciación de puntero nulo y caída de aplicación) a través de una declaración con un valor de excepción largo. • https://www.exploit-db.com/exploits/8573 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 2CVE-2009-1412
https://notcve.org/view.php?id=CVE-2009-1412
24 Apr 2009 — Argument injection vulnerability in the chromehtml: protocol handler in Google Chrome before 1.0.154.59, when invoked by Internet Explorer, allows remote attackers to determine the existence of files, and open tabs for URLs that do not satisfy the IsWebSafeScheme restriction, via a web page that sets document.location to a chromehtml: value, as demonstrated by use of a (1) javascript: or (2) data: URL. NOTE: this can be leveraged for Universal XSS by exploiting certain behavior involving persistence across ... • http://chromium.googlecode.com/issues/attachment?aid=5579180911289877192&name=Google+Chrome+Advisory.doc • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 0CVE-2009-1414
https://notcve.org/view.php?id=CVE-2009-1414
24 Apr 2009 — Google Chrome 2.0.x lets modifications to the global object persist across a page transition, which makes it easier for attackers to conduct Universal XSS attacks via unspecified vectors. Google Chrome 2.0.x permite que las modificaciones en el objeto global persistan a través de una página de transición, lo que facilita a los atacantes a la hora de llevar a cabo ataques XSS universales a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=9860 • CWE-264: Permissions, Privileges, and Access Controls •