Page 659 of 3368 results (0.013 seconds)

CVSS: 4.3EPSS: 0%CPEs: 235EXPL: 0

Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to inject arbitrary web script or HTML via vectors related to a chrome://net-internals URI. Vulnerabilidad de ejecución de comandos en sitios cruzados(XSS) en Google Chrome antes de v4.1.249.1059 permite a atacantes remotos inyectar HTML o secuencias de comandos web a través de vectores relacionados con una URI chrome://net-internals. • http://bugs.chromium.org/40137 http://googlechromereleases.blogspot.com/2010/04/stable-update-security-fixes.html http://osvdb.org/63999 http://secunia.com/advisories/39544 http://www.securityfocus.com/bid/39603 http://www.securityfocus.com/bid/39667 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11244 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.3EPSS: 0%CPEs: 235EXPL: 0

Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to inject arbitrary web script or HTML via vectors related to a chrome://downloads URI. Vulnerabilidad de ejecución de comandos en sitios cruzados(XSS) en Google Chrome antes de v4.1.249.1059 permite a atacantes remotos inyectar HTML o secuencias de comandos web a través de vectores relacionados con una URI chrome://downloads. • http://bugs.chromium.org/40138 http://googlechromereleases.blogspot.com/2010/04/stable-update-security-fixes.html http://osvdb.org/63998 http://secunia.com/advisories/39544 http://www.securityfocus.com/bid/39603 http://www.securityfocus.com/bid/39669 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11418 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.8EPSS: 0%CPEs: 235EXPL: 0

The Google V8 bindings in Google Chrome before 4.1.249.1059 allow attackers to cause a denial of service (memory corruption) via unknown vectors. Los enlaces de Google V8 en Google Chrome antes de la versión v4.1.249.1059 permiten a atacantes provocar una denegación de servicio (mediante corrupción de memoria) a través de vectores desconocidos. • http://bugs.chromium.org/40635 http://googlechromereleases.blogspot.com/2010/04/stable-update-security-fixes.html http://osvdb.org/63996 http://secunia.com/advisories/39544 http://www.securityfocus.com/bid/39603 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11925 •

CVSS: 9.3EPSS: 0%CPEs: 235EXPL: 0

Unspecified vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to access local files via vectors related to "developer tools." Vulnerabilidad no especificada en Google Chrome anterior v.4.1.249.1059 permite a atacantes remotos aceder a archivos locales a través de vectores reacionados con las "herramientas de desarrollo". • http://bugs.chromium.org/40136 http://googlechromereleases.blogspot.com/2010/04/stable-update-security-fixes.html http://secunia.com/advisories/39544 http://www.securityfocus.com/bid/39603 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12041 •

CVSS: 10.0EPSS: 1%CPEs: 85EXPL: 1

Multiple integer overflows in Google Chrome before 4.1.249.1036 allow remote attackers to have an unspecified impact via vectors involving WebKit JavaScript objects. Múltiples desbordamientos de entero en Google Chrome en versiones anteriores a la 4.1.249.1036 permite a atacantes remotos tener un impacto no especificado mediante vectores relacionados con objetos WebKit JavaScript. • http://code.google.com/p/chromium/issues/detail?id=35724 http://googlechromereleases.blogspot.com/2010/03/stable-channel-update.html http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html http://secunia.com/advisories/43068 http://www.vupen.com/english/advisories/2011/0212 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14023 • CWE-189: Numeric Errors •