Page 658 of 3367 results (0.016 seconds)

CVSS: 7.5EPSS: 2%CPEs: 108EXPL: 0

Google Chrome before 4.1.249.1064 does not properly handle fonts, which allows remote attackers to cause a denial of service (memory corruption) and possibly have unspecified other impact via unknown vectors. Google Chrome anteriores a v4.1.249.1064 no gestiona de forma adecuada las fuentes, lo que permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) y posiblemente tener otros impactos no especificados a través de vectores desconocidos. • http://code.google.com/p/chromium/issues/detail?id=42294 http://googlechromereleases.blogspot.com/2010/04/stable-update-bug-and-security-fixes.html http://secunia.com/advisories/39651 http://secunia.com/advisories/41856 http://www.mandriva.com/security/advisories?name=MDVSA-2011:039 http://www.ubuntu.com/usn/USN-1006-1 http://www.vupen.com/english/advisories/2010/1016 http://www.vupen.com/english/advisories/2010/2722 http://www.vupen.com/english/advisories/2011/0552 https:&# • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 5.0EPSS: 2%CPEs: 240EXPL: 0

Google Chrome before 4.1.249.1064 does not properly handle HTML5 media, which allows remote attackers to cause a denial of service (memory corruption) and possibly have unspecified other impact via unknown vectors. Google Chrome antes de la versión v4.1.249.1064 no controla correctamente los contenidos multimedia HTML5, lo que permite a atacantes remotos provocar una denegación de servicio (mediante corrupción de memoria) y tener un impacto no especificado a través de vectores desconocidos. • http://bugs.chromium.org/40487 http://googlechromereleases.blogspot.com/2010/04/stable-update-bug-and-security-fixes.html http://secunia.com/advisories/39651 http://secunia.com/advisories/41856 http://www.mandriva.com/security/advisories?name=MDVSA-2011:039 http://www.ubuntu.com/usn/USN-1006-1 http://www.vupen.com/english/advisories/2010/1016 http://www.vupen.com/english/advisories/2010/2722 http://www.vupen.com/english/advisories/2011/0552 https://oval.cisecurity.org/reposi • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.5EPSS: 0%CPEs: 235EXPL: 0

Google Chrome before 4.1.249.1059 does not properly support forms, which has unknown impact and attack vectors, related to a "type confusion error." Google Chrome anterior a v4.1.249.1059 no soporta adecuadamente los formularios, esto tiene un impacto y vectores de ataque desconocidos. Está relacionado con un "error de confusión de tipo". • http://bugs.chromium.org/39443 http://googlechromereleases.blogspot.com/2010/04/stable-update-security-fixes.html http://secunia.com/advisories/39544 http://www.securityfocus.com/bid/39603 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11906 •

CVSS: 10.0EPSS: 0%CPEs: 235EXPL: 0

Google Chrome before 4.1.249.1059 does not prevent pages from loading with the New Tab page's privileges, which has unknown impact and attack vectors. Google Chrome anterior a v4.1.249.1059 no previene que las páginas se carguen con los privilegios de las páginas de Pestaña Nueva -New Tab-. Esto tiene un impacto y vectores de ataque desconocidos. • http://bugs.chromium.org/40575 http://googlechromereleases.blogspot.com/2010/04/stable-update-security-fixes.html http://osvdb.org/63997 http://secunia.com/advisories/39544 http://www.securityfocus.com/bid/39603 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11866 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 4.3EPSS: 0%CPEs: 235EXPL: 0

Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to inject arbitrary web script or HTML via vectors related to a chrome://net-internals URI. Vulnerabilidad de ejecución de comandos en sitios cruzados(XSS) en Google Chrome antes de v4.1.249.1059 permite a atacantes remotos inyectar HTML o secuencias de comandos web a través de vectores relacionados con una URI chrome://net-internals. • http://bugs.chromium.org/40137 http://googlechromereleases.blogspot.com/2010/04/stable-update-security-fixes.html http://osvdb.org/63999 http://secunia.com/advisories/39544 http://www.securityfocus.com/bid/39603 http://www.securityfocus.com/bid/39667 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11244 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •