Vulnerabilities > Google > Chrome > 10.0.648.134

DATE CVE VULNERABILITY TITLE RISK
2012-05-24 CVE-2011-3108 Resource Management Errors vulnerability in Google Chrome
Use-after-free vulnerability in Google Chrome before 19.0.1084.52 allows remote attackers to execute arbitrary code via vectors related to the browser cache.
network
low complexity
google CWE-399
critical
10.0
2012-05-24 CVE-2011-3107 Multiple Security vulnerability in Google Chrome Prior to 19.0.1084.52
Google Chrome before 19.0.1084.52 does not properly implement JavaScript bindings for plug-ins, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via unknown vectors.
network
low complexity
google
7.5
2012-05-24 CVE-2011-3106 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome
The WebSockets implementation in Google Chrome before 19.0.1084.52 does not properly handle use of SSL, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
network
low complexity
google CWE-119
critical
10.0
2012-05-24 CVE-2011-3105 Resource Management Errors vulnerability in Google Chrome
Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the :first-letter pseudo-element.
network
low complexity
google CWE-399
7.5
2012-05-24 CVE-2011-3104 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome
Skia, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
network
low complexity
google CWE-119
5.0
2012-05-24 CVE-2011-3103 Resource Management Errors vulnerability in Google Chrome
Google V8, as used in Google Chrome before 19.0.1084.52, does not properly perform garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code.
network
low complexity
google CWE-399
7.5
2012-05-16 CVE-2011-3102 Numeric Errors vulnerability in Google Chrome
Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via unknown vectors.
network
google apple CWE-189
6.8
2012-05-16 CVE-2011-3100 Multiple Security vulnerability in Google Chrome Prior to 19
Google Chrome before 19.0.1084.46 does not properly draw dash paths, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
network
low complexity
google
5.0
2012-05-16 CVE-2011-3099 Resource Management Errors vulnerability in Google Chrome
Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a malformed name for the font encoding.
network
low complexity
google CWE-399
critical
10.0
2012-05-16 CVE-2011-3098 Permissions, Privileges, and Access Controls vulnerability in multiple products
Google Chrome before 19.0.1084.46 on Windows uses an incorrect search path for the Windows Media Player plug-in, which might allow local users to gain privileges via a Trojan horse plug-in in an unspecified directory.
local
low complexity
opensuse google microsoft CWE-264
7.2