CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2010-3414
https://notcve.org/view.php?id=CVE-2010-3414
Google Chrome before 6.0.472.59 on Mac OS X does not properly implement file dialogs, which allows attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. NOTE: this issue exists because of an incorrect fix for CVE-2010-3112 on Mac OS X. Google Chrome anterior a v6.0.472.59 en Mac OS X no aplicar adecuadamente diálogos de archivo, lo cual permite a atacantes provocar una denegación de servicio (corrupción de memoria) o posiblemente tener un impacto no especificado a través de vectores desconocidos. NOTA: este problema existe debido a una corrección incorrecta para CVE-2010-3112 en Mac OS X. • http://code.google.com/p/chromium/issues/detail?id=45400 http://code.google.com/p/chromium/issues/detail?id=53361 http://googlechromereleases.blogspot.com/2010/09/stable-beta-channel-updates_14.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13941 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2010-3412
https://notcve.org/view.php?id=CVE-2010-3412
Race condition in the console implementation in Google Chrome before 6.0.472.59 has unspecified impact and attack vectors. Condición de carrera en la implementación de consola en Google Chrome anterior a v6.0.472.59 tiene un impacto y vectores de ataque no especificados. • http://code.google.com/p/chromium/issues/detail?id=51919 http://googlechromereleases.blogspot.com/2010/09/stable-beta-channel-updates_14.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7354 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2010-3416
https://notcve.org/view.php?id=CVE-2010-3416
Google Chrome before 6.0.472.59 on Linux does not properly implement the Khmer locale, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. Google Chrome anterior a v6.0.472.59 en Linux no aplica adecuadamente la localización de Khmer, lo cual permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o posiblemente tener un impacto no especificado a través de vectores desconocidos. • http://code.google.com/p/chromium/issues/detail?id=53930 http://googlechromereleases.blogspot.com/2010/09/stable-beta-channel-updates_14.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14307 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2010-3415
https://notcve.org/view.php?id=CVE-2010-3415
Google Chrome before 6.0.472.59 does not properly implement Geolocation, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. Google Chrome anterior a v6.0.472.59 no implementa adecuadamente Geolocation, lo cual permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o posiblemente tener un impacto no especificado a través de vectores desconocidos. • http://code.google.com/p/chromium/issues/detail?id=53394 http://googlechromereleases.blogspot.com/2010/09/stable-beta-channel-updates_14.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7620 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2010-3417
https://notcve.org/view.php?id=CVE-2010-3417
Google Chrome before 6.0.472.59 does not prompt the user before granting access to the extension history, which allows attackers to obtain potentially sensitive information via unspecified vectors. Google Chrome anterior a v6.0.472.59 no le avisa al usuario antes de otorgar acceso al historial de extensión, lo cual permite a atacantes obtener información sensible a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=54006 http://googlechromereleases.blogspot.com/2010/09/stable-beta-channel-updates_14.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7371 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •