Vulnerabilities > Google > Chrome > 5.0.391.0

DATE CVE VULNERABILITY TITLE RISK
2011-05-03 CVE-2011-1437 Integer Overflow OR Wraparound vulnerability in Google Chrome
Multiple integer overflows in Google Chrome before 11.0.696.57 allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to float rendering.
network
low complexity
google CWE-190
6.8
2011-05-03 CVE-2011-1436 Improper Input Validation vulnerability in Google Chrome
Google Chrome before 11.0.696.57 on Linux does not properly interact with the X Window System, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors.
network
low complexity
google linux CWE-20
5.0
2011-05-03 CVE-2011-1435 Incorrect Default Permissions vulnerability in Google Chrome
Google Chrome before 11.0.696.57 does not properly implement the tabs permission for extensions, which allows remote attackers to read local files via a crafted extension.
network
low complexity
google CWE-276
5.0
2011-05-03 CVE-2011-1434 Improper Input Validation vulnerability in Google Chrome
Google Chrome before 11.0.696.57 does not ensure thread safety during handling of MIME data, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
network
low complexity
google CWE-20
6.8
2011-05-03 CVE-2011-1305 Race Condition vulnerability in Google Chrome
Race condition in Google Chrome before 11.0.696.57 on Linux and Mac OS X allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to linked lists and a database.
network
google CWE-362
6.8
2011-05-03 CVE-2011-1304 Unspecified vulnerability in Google Chrome
Unspecified vulnerability in Google Chrome before 11.0.696.57 allows remote attackers to bypass the pop-up blocker via vectors related to plug-ins.
network
low complexity
google
5.0
2011-05-03 CVE-2011-1303 Improper Input Validation vulnerability in Google Chrome
Google Chrome before 11.0.696.57 does not properly handle floating objects, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."
network
low complexity
google CWE-20
7.5
2011-04-15 CVE-2011-1302 Out-Of-Bounds Write vulnerability in Google Chrome
Heap-based buffer overflow in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors.
network
low complexity
google CWE-787
critical
9.3
2011-04-15 CVE-2011-1301 USE After Free vulnerability in Google Chrome
Use-after-free vulnerability in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors.
network
low complexity
google CWE-416
critical
9.3
2011-04-15 CVE-2011-1300 Numeric Errors vulnerability in multiple products
The Program::getActiveUniformMaxLength function in libGLESv2/Program.cpp in libGLESv2.dll in the WebGLES library in Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox 4.x before 4.0.1 on Windows and in the GPU process in Google Chrome before 10.0.648.205 on Windows, allows remote attackers to execute arbitrary code via unspecified vectors, related to an "off-by-three" error.
network
low complexity
mozilla microsoft google CWE-189
critical
10.0