Vulnerabilities > Google > Chrome > 17.0.963.37

DATE CVE VULNERABILITY TITLE RISK
2012-05-24 CVE-2011-3106 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome
The WebSockets implementation in Google Chrome before 19.0.1084.52 does not properly handle use of SSL, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
network
low complexity
google CWE-119
critical
10.0
2012-05-24 CVE-2011-3105 Resource Management Errors vulnerability in Google Chrome
Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the :first-letter pseudo-element.
network
low complexity
google CWE-399
7.5
2012-05-24 CVE-2011-3104 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome
Skia, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
network
low complexity
google CWE-119
5.0
2012-05-24 CVE-2011-3103 Resource Management Errors vulnerability in Google Chrome
Google V8, as used in Google Chrome before 19.0.1084.52, does not properly perform garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code.
network
low complexity
google CWE-399
7.5
2012-05-16 CVE-2011-3102 Numeric Errors vulnerability in Google Chrome
Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via unknown vectors.
network
google apple CWE-189
6.8
2012-05-16 CVE-2011-3100 Multiple Security vulnerability in Google Chrome Prior to 19
Google Chrome before 19.0.1084.46 does not properly draw dash paths, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
network
low complexity
google
5.0
2012-05-16 CVE-2011-3099 Resource Management Errors vulnerability in Google Chrome
Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a malformed name for the font encoding.
network
low complexity
google CWE-399
critical
10.0
2012-05-16 CVE-2011-3098 Permissions, Privileges, and Access Controls vulnerability in multiple products
Google Chrome before 19.0.1084.46 on Windows uses an incorrect search path for the Windows Media Player plug-in, which might allow local users to gain privileges via a Trojan horse plug-in in an unspecified directory.
local
low complexity
opensuse google microsoft CWE-264
7.2
2012-05-16 CVE-2011-3097 Improper Input Validation vulnerability in Google Chrome
The PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an out-of-bounds write error in the implementation of sampled functions.
network
low complexity
google CWE-20
critical
10.0
2012-05-16 CVE-2011-3096 Resource Management Errors vulnerability in Google Chrome
Use-after-free vulnerability in Google Chrome before 19.0.1084.46 on Linux allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an error in the GTK implementation of the omnibox.
network
low complexity
google linux CWE-399
7.5