CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 1CVE-2011-0981
https://notcve.org/view.php?id=CVE-2011-0981
Google Chrome before 9.0.597.94 does not properly perform event handling for animations, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." Google Chrome anterior a v9.0.597.94 no realiza adecuadamente el manejo de los eventos de animación, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto a través de vectores desconocidos que llevan a un "puntero inválido (stale)". • http://code.google.com/p/chromium/issues/detail?id=67234 http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html http://lists.apple.com/archives/security-announce/2011//Jul/msg00002.html http://secunia.com/advisories/43342 http://secunia.com/advisories/43368 http://support.apple.com/kb/HT4808 http://support. • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2011-0985
https://notcve.org/view.php?id=CVE-2011-0985
Google Chrome before 9.0.597.94 does not properly perform process termination upon memory exhaustion, which has unspecified impact and remote attack vectors. Google Chrome anterior a v9.0.597.94 no realizar correctamente la terminación del proceso tras el agotamiento de memoria, lo cual tiene un impacto no especificado y vectores de ataque remotos • http://code.google.com/p/chromium/issues/detail?id=70456 http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html http://secunia.com/advisories/43342 http://secunia.com/advisories/43368 http://www.debian.org/security/2011/dsa-2166 http://www.securityfocus.com/bid/46262 http://www.srware.net/forum/viewtopic.php?f=18&t=2190 http://www.vupen.com/english/advisories/2011/0408 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef% • CWE-400: Uncontrolled Resource Consumption •
CVSS: 4.3EPSS: 0%CPEs: 11EXPL: 0CVE-2011-3970 – libxslt: Out-of-bounds read when parsing certain patterns
https://notcve.org/view.php?id=CVE-2011-3970
libxslt, as used in Google Chrome before 17.0.963.46, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. libxslt, tal y como se utiliza en Google Chrome antes de v17.0.963.46, permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=110277 http://googlechromereleases.blogspot.com/2012/02/stable-channel-update.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14818 https://www.suse.com/support/update/announcement/2013/suse-su-20131654-1.html https://www.suse.com/support/update/announcement/2013/suse-su-20131656-1.html https://access.redhat.com/security/cve/CVE-2011-3970 https://bugzilla.redhat.com/show_bug.cgi?id=788826 • CWE-125: Out-of-bounds Read •
CVSS: 6.8EPSS: 1%CPEs: 1EXPL: 1CVE-2011-0784
https://notcve.org/view.php?id=CVE-2011-0784
Race condition in Google Chrome before 9.0.597.84 allows remote attackers to execute arbitrary code via vectors related to audio. Condición de carrera en Google Chrome anterior a v9.0.597.84, permite a atacantes remotos ejecutar código de su elección a través de vectores relacionados con el audio • http://code.google.com/p/chromium/issues/detail?id=69195 http://googlechromereleases.blogspot.com/2011/02/stable-channel-update.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14108 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 4.3EPSS: 1%CPEs: 3EXPL: 1CVE-2011-0783
https://notcve.org/view.php?id=CVE-2011-0783
Unspecified vulnerability in Google Chrome before 9.0.597.84 allows user-assisted remote attackers to cause a denial of service (application crash) via vectors involving a "bad volume setting." Vulnerabilidad no especificada en Google Chrome anterior a v9.0.597.84, permite a atacantes remotos asistidos por el usuario provocar una denegación de servicio (caída de aplicación) a través de vectores que implican un "ajuste de volumen malo". • http://code.google.com/p/chromium/issues/detail?id=68244 http://googlechromereleases.blogspot.com/2011/02/stable-channel-update.html http://secunia.com/advisories/43368 http://www.debian.org/security/2011/dsa-2166 http://www.vupen.com/english/advisories/2011/0408 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14730 •