Page 593 of 3368 results (0.035 seconds)

CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0

Google Chrome before 14.0.835.163 uses incorrect permissions for non-gallery pages, which has unspecified impact and attack vectors. Google Chrome antes de v14.0.835.163, usa permisos incorrectos para paginas "non-gallery" algo que tiene un impacto y vectores de ataque no especificados • http://code.google.com/p/chromium/issues/detail?id=93497 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://osvdb.org/75561 https://exchange.xforce.ibmcloud.com/vulnerabilities/69886 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14594 • CWE-276: Incorrect Default Permissions •

CVSS: 6.8EPSS: 2%CPEs: 4EXPL: 0

Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale node." Google Chrome antes de la v14.0.835.163 no controla correctamente secuencias de señal Cascading Style Sheets (CSS), lo que permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores desconocidos que conducen a un "stale node." • http://code.google.com/p/chromium/issues/detail?id=92959 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://lists.apple.com/archives/security-announce/2012/Mar/msg00000.html http://lists.apple.com/archives/security-announce/2012/Mar/msg00001.html http://lists.apple.com/archives/security-announce/2012/Mar/msg00003.html http://osvdb.org/75557 http://secunia.com/advisories/48274 http://secunia.com/advisories/48288 http://secunia.com/advisories/48377 htt • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •

CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0

Google Chrome before 14.0.835.163 does not perform an expected pin operation for a self-signed certificate during a session, which has unspecified impact and remote attack vectors. Google Chrome antes de v14.0.835.163 no realiza una operación de pin esperada para un certificado auto-firmado durante una sesión, lo que tiene un impacto no especificado y vectores de ataque remotos. • http://code.google.com/p/chromium/issues/detail?id=95917 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://osvdb.org/75567 https://exchange.xforce.ibmcloud.com/vulnerabilities/69892 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14454 • CWE-295: Improper Certificate Validation •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Google Chrome before 14.0.835.163 does not properly process MP3 files, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. Google Chrome antes de v14.0.835.163 no procesa adecuadamente los archivos MP3, lo que permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=85041 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://osvdb.org/75544 https://exchange.xforce.ibmcloud.com/vulnerabilities/69871 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14696 • CWE-125: Out-of-bounds Read •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to plug-in handling. Vulnerabilidad "use-after-free" en Google Chrome antes de v14.0.835.163, permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto no especificado a través de vectores relacionados con la manipulación de complementos. • http://code.google.com/p/chromium/issues/detail?id=91197 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://osvdb.org/75555 https://exchange.xforce.ibmcloud.com/vulnerabilities/69880 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14395 • CWE-416: Use After Free •