CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 1CVE-2011-1115
https://notcve.org/view.php?id=CVE-2011-1115
01 Mar 2011 — Google Chrome before 9.0.597.107 does not properly render tables, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." Google Chrome anterior a v9.0.597.107 no representa adecuadamente las tablas, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores desconocidos que llevan a un "stale pointer". • http://code.google.com/p/chromium/issues/detail?id=71115 •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 1CVE-2011-1117
https://notcve.org/view.php?id=CVE-2011-1117
01 Mar 2011 — Google Chrome before 9.0.597.107 does not properly handle XHTML documents, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "stale nodes." Google Chrome anterior a v9.0.597.107 no controla correctamente los documentos XHTML, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores desconocidos que conducen a nodos no válidos ("stale nodes"). • http://code.google.com/p/chromium/issues/detail?id=71386 •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 1CVE-2011-0983
https://notcve.org/view.php?id=CVE-2011-0983
10 Feb 2011 — Google Chrome before 9.0.597.94 does not properly handle anonymous blocks, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." Google Chrome anterior a v9.0.597.94 no gestiona correctamente los bloques anónimos, permitiendo a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores desconocidos que dan lugar a un "stale pointer" • http://code.google.com/p/chromium/issues/detail?id=69556 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 1CVE-2011-0981
https://notcve.org/view.php?id=CVE-2011-0981
10 Feb 2011 — Google Chrome before 9.0.597.94 does not properly perform event handling for animations, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." Google Chrome anterior a v9.0.597.94 no realiza adecuadamente el manejo de los eventos de animación, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto a través de vectores desconocidos que llevan a un "puntero invál... • http://code.google.com/p/chromium/issues/detail?id=67234 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 2%CPEs: 20EXPL: 1CVE-2010-4494 – libxml2: double-free in XPath processing code
https://notcve.org/view.php?id=CVE-2010-4494
07 Dec 2010 — Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling. Vulnerabilidad de liberación doble en libxml2 2.7.8 y otras versiones, tal como se utiliza en Google Chrome en versiones anteriores a 8.0.552.215 y otros productos, permite a atacantes remotos provocar una denegación de servicio o posiblemente tener o... • http://code.google.com/p/chromium/issues/detail?id=63444 • CWE-415: Double Free •
CVSS: 9.8EPSS: 1%CPEs: 25EXPL: 1CVE-2010-4008 – libxml2: Crash (stack frame overflow or NULL pointer dereference) by traversal of XPath axis
https://notcve.org/view.php?id=CVE-2010-4008
16 Nov 2010 — libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service (application crash) via a crafted XML document. libxml2 anterior v2.7.8, como el usado en Google Chrome anterior v7.0.517.44, Apple Safari v5.0.2 y anteriores, otros productos, ree desde localizaciones de memoria inválidas durante el proc... • http://blog.bkis.com/en/libxml2-vulnerability-in-google-chrome-and-apple-safari • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-476: NULL Pointer Dereference •
CVSS: 9.3EPSS: 0%CPEs: 3EXPL: 0CVE-2010-1823
https://notcve.org/view.php?id=CVE-2010-1823
24 Sep 2010 — Use-after-free vulnerability in WebKit before r65958, as used in Google Chrome before 6.0.472.59, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger use of document APIs such as document.close during parsing, as demonstrated by a Cascading Style Sheets (CSS) file referencing an invalid SVG font, aka rdar problem 8442098. Vulnerabilidad de usar después de liberar en WebKit en versiones anteriores a la vr65958, como se utiliza en Google Chro... • http://code.google.com/p/chromium/issues/detail?id=50250 • CWE-416: Use After Free •
CVSS: 9.7EPSS: 16%CPEs: 2EXPL: 1CVE-2010-1824 – Apple Webkit Error Message Mutation Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-1824
24 Sep 2010 — Use-after-free vulnerability in WebKit, as used in Apple iTunes before 10.2 on Windows, Apple Safari, and Google Chrome before 6.0.472.59, allows remote attackers to execute arbitrary code or cause a denial of service via vectors related to SVG styles, the DOM tree, and error messages. Vulnerabilidad de usar después de liberar en WebKit, como se utiliza en Google Chrome en versiones anteriores a la v6.0.472.59, permiten a atacantes remotos provocar una denegación de servicio y posiblemente provocar otros da... • http://code.google.com/p/chromium/issues/detail?id=50712 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 4%CPEs: 8EXPL: 0CVE-2010-3190 – Apple Security Advisory 2015-09-16-3
https://notcve.org/view.php?id=CVE-2010-3190
31 Aug 2010 — Untrusted search path vulnerability in the Microsoft Foundation Class (MFC) Library in Microsoft Visual Studio .NET 2003 SP1; Visual Studio 2005 SP1, 2008 SP1, and 2010; Visual C++ 2005 SP1, 2008 SP1, and 2010; and Exchange Server 2010 Service Pack 3, 2013, and 2013 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory during execution of an MFC application such as AtlTraceTool8.exe (aka ATL MFC Trace Tool), as demonstrated by a directory that contains a T... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00003.html • CWE-426: Untrusted Search Path •
CVSS: 9.3EPSS: 0%CPEs: 59EXPL: 0CVE-2010-1795
https://notcve.org/view.php?id=CVE-2010-1795
20 Aug 2010 — Untrusted search path vulnerability in Apple iTunes before 9.1, when running on Windows 7, Vista, and XP, allows local users and possibly remote attackers to gain privileges via a Trojan horse DLL in the current working directory. Vulnerabilidad de ruta de búsqueda no confiable en Apple iTunes anterior a v9.1, cuando se ejecuta en Windows 7, Vista, y XP, permite a atacantes obtener privilegios a través de una DDL que es un troyano en el directorio actual de trabajo. • http://support.apple.com/kb/HT4105 •