CVSS: 7.5EPSS: 1%CPEs: 132EXPL: 0CVE-2011-3113
https://notcve.org/view.php?id=CVE-2011-3113
The PDF functionality in Google Chrome before 19.0.1084.52 does not properly perform a cast of an unspecified variable during handling of color spaces, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document. La funcionalidad PDF en Google Chrome antes de v19.0.1084.52 no realiza debidamente la conversión de una variable no especificada durante la manipulación de los espacios de color, lo que permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto desconocido a través de otra un documento modificado. • http://code.google.com/p/chromium/issues/detail?id=127883 http://googlechromereleases.blogspot.com/2012/05/stable-channel-update_23.html http://osvdb.org/82248 http://secunia.com/advisories/49277 http://www.securityfocus.com/bid/53679 http://www.securitytracker.com/id?1027098 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15566 •
CVSS: 7.5EPSS: 2%CPEs: 132EXPL: 0CVE-2011-3103
https://notcve.org/view.php?id=CVE-2011-3103
Google V8, as used in Google Chrome before 19.0.1084.52, does not properly perform garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code. Google V8, como se utiliza en Google Chrome antes de v19.0.1084.52, no realiza correctamente la recolección de basura, lo que permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) o posiblemente tener un impacto no especificado a través de código JavaScript manipulado. • http://code.google.com/p/chromium/issues/detail?id=117409 http://googlechromereleases.blogspot.com/2012/05/stable-channel-update_23.html http://secunia.com/advisories/49277 http://secunia.com/advisories/49306 http://security.gentoo.org/glsa/glsa-201205-04.xml http://www.securityfocus.com/bid/53679 http://www.securitytracker.com/id?1027098 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15095 • CWE-399: Resource Management Errors •
CVSS: 5.0EPSS: 2%CPEs: 132EXPL: 0CVE-2011-3111
https://notcve.org/view.php?id=CVE-2011-3111
Google V8, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service (invalid read operation) via unspecified vectors. Google V8, como se utiliza en Google Chrome antes de v19.0.1084.52, permite a atacantes remotos provocar una denegación de servicio (operación no válida de lectura) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=126414 http://googlechromereleases.blogspot.com/2012/05/stable-channel-update_23.html http://secunia.com/advisories/49277 http://secunia.com/advisories/49306 http://security.gentoo.org/glsa/glsa-201205-04.xml http://www.securityfocus.com/bid/53679 http://www.securitytracker.com/id?1027098 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15549 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 2%CPEs: 132EXPL: 0CVE-2011-3105
https://notcve.org/view.php?id=CVE-2011-3105
Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the :first-letter pseudo-element. Vulnerabilidad de error en la gestión de recursos en la implementación de las Hojas de Estilo en Cascada (CSS) en Google Chrome antes de 19.0.1084.52, permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificado a través de vectores relacionados con el pseudo-elemento: first-letter. • http://code.google.com/p/chromium/issues/detail?id=120912 http://googlechromereleases.blogspot.com/2012/05/stable-channel-update_23.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00005.html http://osvdb.org/82242 http://secunia.com/advisories/49277 http://secunia.com/advisories/49306 http://security.gentoo.org/glsa/glsa&# • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 6%CPEs: 132EXPL: 0CVE-2011-3106
https://notcve.org/view.php?id=CVE-2011-3106
The WebSockets implementation in Google Chrome before 19.0.1084.52 does not properly handle use of SSL, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. La implementación de WebSockets en Google Chrome antes de v19.0.1084.52 no controla correctamente el uso de SSL, que permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=122654 http://googlechromereleases.blogspot.com/2012/05/stable-channel-update_23.html http://osvdb.org/82251 http://secunia.com/advisories/49277 http://secunia.com/advisories/49306 http://security.gentoo.org/glsa/glsa-201205-04.xml http://www.securityfocus.com/bid/53679 http://www.securitytracker.com/id?1027098 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15470 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •