Vulnerabilities > Google > Chrome > 4.0.258.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-05-24 | CVE-2011-3107 | Multiple Security vulnerability in Google Chrome Prior to 19.0.1084.52 Google Chrome before 19.0.1084.52 does not properly implement JavaScript bindings for plug-ins, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via unknown vectors. | 7.5 |
2012-05-24 | CVE-2011-3106 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome The WebSockets implementation in Google Chrome before 19.0.1084.52 does not properly handle use of SSL, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. | 10.0 |
2012-05-24 | CVE-2011-3105 | Resource Management Errors vulnerability in Google Chrome Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the :first-letter pseudo-element. | 7.5 |
2012-05-24 | CVE-2011-3104 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome Skia, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. | 5.0 |
2012-05-24 | CVE-2011-3103 | Resource Management Errors vulnerability in Google Chrome Google V8, as used in Google Chrome before 19.0.1084.52, does not properly perform garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code. | 7.5 |
2012-05-16 | CVE-2011-3102 | Numeric Errors vulnerability in Google Chrome Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via unknown vectors. | 6.8 |
2012-05-16 | CVE-2011-3100 | Multiple Security vulnerability in Google Chrome Prior to 19 Google Chrome before 19.0.1084.46 does not properly draw dash paths, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. | 5.0 |
2012-05-16 | CVE-2011-3099 | Resource Management Errors vulnerability in Google Chrome Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a malformed name for the font encoding. | 10.0 |
2012-05-16 | CVE-2011-3098 | Permissions, Privileges, and Access Controls vulnerability in multiple products Google Chrome before 19.0.1084.46 on Windows uses an incorrect search path for the Windows Media Player plug-in, which might allow local users to gain privileges via a Trojan horse plug-in in an unspecified directory. | 7.2 |
2012-05-16 | CVE-2011-3097 | Improper Input Validation vulnerability in Google Chrome The PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an out-of-bounds write error in the implementation of sampled functions. | 10.0 |