CVSS: 5.0EPSS: 2%CPEs: 1EXPL: 0CVE-2011-3085
https://notcve.org/view.php?id=CVE-2011-3085
The Autofill feature in Google Chrome before 19.0.1084.46 does not properly restrict field values, which allows remote attackers to cause a denial of service (UI corruption) and possibly conduct spoofing attacks via vectors involving long values. La función Autocompletar en Google Chrome anterior a v19.0.1084.46 no restringe adecuadamente los valores de campo, lo que permite a atacantes remotos causar una denegación de servicio (corrupción de la interfaz de usuario) y, posiblemente, llevar a cabo ataques de spoofing a través de vectores relacionados con los valores de largo. • http://code.google.com/p/chromium/issues/detail?id=118374 http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html http://security.gentoo.org/glsa/glsa-201205-03.xml http://www.securityfocus.com/bid/53540 http://www.securitytracker.com/id?1027067 https://exchange.xforce.ibmcloud.com/vulnerabilities/75590 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15256 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2011-3097
https://notcve.org/view.php?id=CVE-2011-3097
The PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an out-of-bounds write error in the implementation of sampled functions. La funcionalidad PDF en Google Chrome anteriores a v19.0.1084.46, permite atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto no determinado mediante el aprovechamiento de errores de escritura fuera del límite en la implementación de funciones de ejemplo. • http://code.google.com/p/chromium/issues/detail?id=123733 http://code.google.com/p/chromium/issues/detail?id=124182 http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html http://www.securityfocus.com/bid/53540 http://www.securitytracker.com/id?1027067 https://exchange.xforce.ibmcloud.com/vulnerabilities/75602 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15422 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 2%CPEs: 1EXPL: 0CVE-2011-3086
https://notcve.org/view.php?id=CVE-2011-3086
Use-after-free vulnerability in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a STYLE element. Vulnerabilidad la gestión de recursos en Google Chrome antes de 19.0.1084.46 permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con los elementos STYLE. • http://code.google.com/p/chromium/issues/detail?id=118642 http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html http://security.gentoo.org/glsa/glsa-201205-03.xml http://support. • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0CVE-2011-3096
https://notcve.org/view.php?id=CVE-2011-3096
Use-after-free vulnerability in Google Chrome before 19.0.1084.46 on Linux allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an error in the GTK implementation of the omnibox. Vulnerabilidad de error en la gestión de recursos Google Chrome anterior a v19.0.1084.46 en Linux, permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado, aprovechando un error en la aplicación GTK del cuadro multifunción. • http://code.google.com/p/chromium/issues/detail?id=123530 http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html http://security.gentoo.org/glsa/glsa-201205-03.xml http://www.securityfocus.com/bid/53540 http://www.securitytracker.com/id?1027067 https://exchange.xforce.ibmcloud.com/vulnerabilities/75601 • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 2%CPEs: 1EXPL: 0CVE-2011-3089
https://notcve.org/view.php?id=CVE-2011-3089
Use-after-free vulnerability in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving tables. Vulnerabilidad de error en la gestión de recursos en Google Chrome antes de v19.0.1084.46, permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con las tablas. • http://code.google.com/p/chromium/issues/detail?id=120711 http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html http://security.gentoo.org/glsa/glsa-201205-03.xml http://support. • CWE-399: Resource Management Errors •