CVSS: 9.3EPSS: 1%CPEs: 179EXPL: 0CVE-2010-4035
https://notcve.org/view.php?id=CVE-2010-4035
Google Chrome before 7.0.517.41 does not properly perform autofill operations for forms, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted HTML document. Google Chrome anterior a v7.0.517.41 no lleva a cabo todas las operaciones de relleno automático de formularios, permitiendo a atacantes remotos provocar una denegación de servicio (caída de la aplicación) o posiblemente tener un impacto no especificado a través de un documento HTML manipulado. • http://code.google.com/p/chromium/issues/detail?id=50428 http://googlechromereleases.blogspot.com/2010/10/stable-channel-update.html http://secunia.com/advisories/41888 http://www.securityfocus.com/bid/44241 http://www.vupen.com/english/advisories/2010/2731 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6867 • CWE-20: Improper Input Validation •
CVSS: 4.3EPSS: 0%CPEs: 179EXPL: 0CVE-2010-4037
https://notcve.org/view.php?id=CVE-2010-4037
Unspecified vulnerability in Google Chrome before 7.0.517.41 allows remote attackers to bypass the pop-up blocker via unknown vectors. Vulnerabilidad no especificada en Google Chrome anterior a v7.0.517.41 permite a atacantes remotos eludir el bloqueador de ventanas emergentes a través de vectores desconocidos. • http://code.google.com/p/chromium/issues/detail?id=53002 http://googlechromereleases.blogspot.com/2010/10/stable-channel-update.html http://secunia.com/advisories/41888 http://www.securityfocus.com/bid/44241 http://www.vupen.com/english/advisories/2010/2731 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6790 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2010-4038
https://notcve.org/view.php?id=CVE-2010-4038
The Web Sockets implementation in Google Chrome before 7.0.517.41 does not properly handle a shutdown action, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors. La implementación Web Sockets en Google Chrome anterior a v7.0.517.41 no controla correctamente una acción de apagado, permitiendo a atacantes remotos provocar una denegación de servicio (caida de la aplicación) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=53985 http://googlechromereleases.blogspot.com/2010/10/stable-channel-update.html http://secunia.com/advisories/41888 http://www.securityfocus.com/bid/44241 http://www.vupen.com/english/advisories/2010/2731 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13930 • CWE-404: Improper Resource Shutdown or Release •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2010-4039
https://notcve.org/view.php?id=CVE-2010-4039
Google Chrome before 7.0.517.41 on Linux does not properly set the PATH environment variable, which has unspecified impact and attack vectors. Google Chrome anterior a v7.0.517.41 en Linux no maneja correctamente la variable de entorno PATH, teniendo un impacto no especificado y vectores de ataque. • http://code.google.com/p/chromium/issues/detail?id=54132 http://googlechromereleases.blogspot.com/2010/10/stable-channel-update.html http://secunia.com/advisories/41888 http://www.securityfocus.com/bid/44241 http://www.vupen.com/english/advisories/2010/2731 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14223 •
CVSS: 9.3EPSS: 1%CPEs: 179EXPL: 0CVE-2010-4034
https://notcve.org/view.php?id=CVE-2010-4034
Google Chrome before 7.0.517.41 does not properly handle forms, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted HTML document. Google Chrome anterior a v7.0.517.41 no controla correctamente los formularios, permitiendo a atacantes remotos provocar una denegación de servicio (caída de la aplicación) o posiblemente tener un impacto no especificado a través de un documento HTML. • http://code.google.com/p/chromium/issues/detail?id=48857 http://googlechromereleases.blogspot.com/2010/10/stable-channel-update.html http://secunia.com/advisories/41888 http://www.securityfocus.com/bid/44241 http://www.vupen.com/english/advisories/2010/2731 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6775 • CWE-20: Improper Input Validation •