Vulnerabilities > Google > Chrome > 19.0.1049.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-11-15 | CVE-2012-5851 | Cross-Site Scripting vulnerability in multiple products html/parser/XSSAuditor.cpp in WebCore in WebKit, as used in Google Chrome through 22 and Safari 5.1.7, does not consider all possible output contexts of reflected data, which makes it easier for remote attackers to bypass a cross-site scripting (XSS) protection mechanism via a crafted string, aka rdar problem 12019108. | 4.3 |
| 2012-10-11 | CVE-2012-5376 | Improper Privilege Management vulnerability in Google Chrome The Inter-process Communication (IPC) implementation in Google Chrome before 22.0.1229.94 allows remote attackers to bypass intended sandbox restrictions and write to arbitrary files by leveraging access to a renderer process, a different vulnerability than CVE-2012-5112. | 9.3 |
| 2012-06-27 | CVE-2012-2764 | Unspecified vulnerability in Google Chrome Untrusted search path vulnerability in Google Chrome before 20.0.1132.43 on Windows might allow local users to gain privileges via a Trojan horse Metro DLL in the current working directory. | 7.2 |
| 2012-05-24 | CVE-2011-3115 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome Google V8, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger "type corruption." | 7.5 |
| 2012-05-24 | CVE-2011-3114 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome Multiple buffer overflows in the PDF functionality in Google Chrome before 19.0.1084.52 allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger unknown function calls. | 7.5 |
| 2012-05-24 | CVE-2011-3113 | Multiple Security vulnerability in Google Chrome Prior to 19.0.1084.52 The PDF functionality in Google Chrome before 19.0.1084.52 does not properly perform a cast of an unspecified variable during handling of color spaces, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document. | 7.5 |
| 2012-05-24 | CVE-2011-3112 | Resource Management Errors vulnerability in Google Chrome Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an invalid encrypted document. | 5.0 |
| 2012-05-24 | CVE-2011-3111 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome Google V8, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service (invalid read operation) via unspecified vectors. | 5.0 |
| 2012-05-24 | CVE-2011-3110 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome The PDF functionality in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger out-of-bounds write operations. | 7.5 |
| 2012-05-24 | CVE-2011-3109 | Multiple Security vulnerability in Google Chrome Prior to 19.0.1084.52 Google Chrome before 19.0.1084.52 on Linux does not properly perform a cast of an unspecified variable, which allows remote attackers to cause a denial of service or possibly have unknown other impact by leveraging an error in the GTK implementation of the UI. | 7.5 |