Vulnerabilities > Google > Chrome > 4.0.249.27

DATE CVE VULNERABILITY TITLE RISK
2010-09-07 CVE-2010-3258 Deserialization of Untrusted Data vulnerability in Google Chrome
The sandbox implementation in Google Chrome before 6.0.472.53 does not properly deserialize parameters, which has unspecified impact and remote attack vectors.
network
google CWE-502
critical
9.3
2010-09-07 CVE-2010-3257 USE After Free vulnerability in multiple products
Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 6.0.472.53, and webkitgtk before 1.2.6, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving element focus.
9.3
2010-09-07 CVE-2010-3256 Remote Security vulnerability in Chrome
Google Chrome before 6.0.472.53 does not properly limit the number of stored autocomplete entries, which has unspecified impact and attack vectors.
network
google
4.3
2010-09-07 CVE-2010-3255 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
Google Chrome before 6.0.472.53 and webkitgtk before 1.2.6 do not properly handle counter nodes, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
network
google webkitgtk CWE-119
critical
9.3
2010-09-07 CVE-2010-3254 Integer Overflow OR Wraparound vulnerability in Google Chrome
The WebSockets implementation in Google Chrome before 6.0.472.53 does not properly handle integer values, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
network
low complexity
google CWE-190
critical
10.0
2010-09-07 CVE-2010-3253 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome
The implementation of notification permissions in Google Chrome before 6.0.472.53 allows attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
network
low complexity
google CWE-119
critical
10.0
2010-09-07 CVE-2010-3252 USE After Free vulnerability in Google Chrome
Use-after-free vulnerability in the Notifications presenter in Google Chrome before 6.0.472.53 allows attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
network
low complexity
google CWE-416
critical
10.0
2010-09-07 CVE-2010-3251 Null Pointer Dereference vulnerability in Google Chrome
The WebSockets implementation in Google Chrome before 6.0.472.53 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
network
google CWE-476
4.3
2010-09-07 CVE-2010-3250 Remote Security vulnerability in Chrome
Unspecified vulnerability in Google Chrome before 6.0.472.53 allows remote attackers to enumerate the set of installed extensions via unknown vectors.
network
low complexity
google
5.0
2010-09-07 CVE-2010-3249 Denial-Of-Service vulnerability in Chrome
Google Chrome before 6.0.472.53 does not properly implement SVG filters, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, related to a "stale pointer" issue.
network
google
critical
9.3