CVSS: 10.0EPSS: 0%CPEs: 116EXPL: 0CVE-2013-0842
https://notcve.org/view.php?id=CVE-2013-0842
Google Chrome before 24.0.1312.56 does not properly handle %00 characters in pathnames, which has unspecified impact and attack vectors. Google Chrome anterior a v24.0.1312.56 no maneja correctamente caracteres %00 en nombres de ruta, lo que tiene un impacto no especificado y vectores de ataque. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html https://code.google.com/p/chromium/issues/detail?id=166867 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16456 •
CVSS: 7.5EPSS: 0%CPEs: 126EXPL: 0CVE-2013-0843
https://notcve.org/view.php?id=CVE-2013-0843
content/renderer/media/webrtc_audio_renderer.cc in Google Chrome before 24.0.1312.56 on Mac OS X does not use an appropriate buffer size for the 96 kHz sampling rate, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a web site that provides WebRTC audio. content/renderer/media/webrtc_audio_renderer.cc en Google Chrome anterior a v24.0.1312.56 en Mac OS X no utiliza apropiadamente el tamaño de búfer para los 96kHz de frecuencia, lo cual permite a atacantes remotos causar una denegación de servicio (corrupción de memoria y caída de la aplicación) o posiblemente tener un impacto no especificado a través de un sitio web que contenga un audio WebRTC. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html http://src.chromium.org/viewvc/chrome/trunk/src/content/renderer/media/webrtc_audio_renderer.cc?r1=175323&r2=175322&pathrev=175323 http://src.chromium.org/viewvc/chrome?view=rev&revision=175323 https://code.google.com/p/chromium/issues/detail?id=166523 https://codereview.chromium.org/11773017 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 116EXPL: 0CVE-2013-0840
https://notcve.org/view.php?id=CVE-2013-0840
Google Chrome before 24.0.1312.56 does not validate URLs during the opening of new windows, which has unspecified impact and remote attack vectors. Google Chrome anterior a v24.0.1312.56 no valida URLs durante la apertura de nuevas ventanas, lo que tiene un impacto no especificado y vectores de ataque. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html https://code.google.com/p/chromium/issues/detail?id=170532 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16335 •
CVSS: 7.5EPSS: 0%CPEs: 123EXPL: 0CVE-2012-5148
https://notcve.org/view.php?id=CVE-2012-5148
The hyphenation functionality in Google Chrome before 24.0.1312.52 does not properly validate file names, which has unspecified impact and attack vectors. La funcionalidad hyphenation en Google Chrome anterior a v24.0.1312.52 no valida correctamente nombres de ficheros, el cual tiene un impacto no especificado y vectores de ataques. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html http://lists.opensuse.org/opensuse-updates/2013-02/msg00005.html https://code.google.com/p/chromium/issues/detail?id=167122 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15746 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 123EXPL: 0CVE-2012-5153
https://notcve.org/view.php?id=CVE-2012-5153
Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.52, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers an out-of-bounds access to stack memory. Google V8 anterior a v3.14.5.3 usado en Google Chrome anterior a 24.0.1312.52, permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto a través de un código JavaScript que provoca un acceso fuera de rango en la pila de la memoria. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html http://lists.opensuse.org/opensuse-updates/2013-02/msg00005.html https://code.google.com/p/chromium/issues/detail?id=164565 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16185 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •