CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2843
https://notcve.org/view.php?id=CVE-2011-2843
Google Chrome before 14.0.835.163 does not properly handle media buffers, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. Google Chrome antes de v14.0.835.163 no controla correctamente los buffers multimedia, lo que permite a atacantes remotos provocar una denegación de servicio (lectura fuera de los límites) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=82438 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://osvdb.org/75543 https://exchange.xforce.ibmcloud.com/vulnerabilities/69870 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14547 • CWE-125: Out-of-bounds Read •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2859
https://notcve.org/view.php?id=CVE-2011-2859
Google Chrome before 14.0.835.163 uses incorrect permissions for non-gallery pages, which has unspecified impact and attack vectors. Google Chrome antes de v14.0.835.163, usa permisos incorrectos para paginas "non-gallery" algo que tiene un impacto y vectores de ataque no especificados • http://code.google.com/p/chromium/issues/detail?id=93497 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://osvdb.org/75561 https://exchange.xforce.ibmcloud.com/vulnerabilities/69886 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14594 • CWE-276: Incorrect Default Permissions •
CVSS: 6.8EPSS: 2%CPEs: 4EXPL: 0CVE-2011-2855
https://notcve.org/view.php?id=CVE-2011-2855
Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale node." Google Chrome antes de la v14.0.835.163 no controla correctamente secuencias de señal Cascading Style Sheets (CSS), lo que permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores desconocidos que conducen a un "stale node." • http://code.google.com/p/chromium/issues/detail?id=92959 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://lists.apple.com/archives/security-announce/2012/Mar/msg00000.html http://lists.apple.com/archives/security-announce/2012/Mar/msg00001.html http://lists.apple.com/archives/security-announce/2012/Mar/msg00003.html http://osvdb.org/75557 http://secunia.com/advisories/48274 http://secunia.com/advisories/48288 http://secunia.com/advisories/48377 htt • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2874
https://notcve.org/view.php?id=CVE-2011-2874
Google Chrome before 14.0.835.163 does not perform an expected pin operation for a self-signed certificate during a session, which has unspecified impact and remote attack vectors. Google Chrome antes de v14.0.835.163 no realiza una operación de pin esperada para un certificado auto-firmado durante una sesión, lo que tiene un impacto no especificado y vectores de ataque remotos. • http://code.google.com/p/chromium/issues/detail?id=95917 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://osvdb.org/75567 https://exchange.xforce.ibmcloud.com/vulnerabilities/69892 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14454 • CWE-295: Improper Certificate Validation •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2844
https://notcve.org/view.php?id=CVE-2011-2844
Google Chrome before 14.0.835.163 does not properly process MP3 files, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. Google Chrome antes de v14.0.835.163 no procesa adecuadamente los archivos MP3, lo que permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=85041 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://osvdb.org/75544 https://exchange.xforce.ibmcloud.com/vulnerabilities/69871 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14696 • CWE-125: Out-of-bounds Read •