Vulnerabilities > Google > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-06-15 | CVE-2010-2297 | Code Injection vulnerability in multiple products rendering/FixedTableLayout.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an HTML document that has a large colspan attribute within a table. | 9.3 |
| 2010-06-15 | CVE-2010-2296 | Permissions, Privileges, and Access Controls vulnerability in Google Chrome The implementation of unspecified DOM methods in Google Chrome before 5.0.375.70 allows remote attackers to bypass the Same Origin Policy via unknown vectors. | 9.3 |
| 2010-06-11 | CVE-2010-1770 | Code Injection vulnerability in multiple products WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Apple Safari before 4.1 on Mac OS X 10.4, and Google Chrome before 5.0.375.70 does not properly handle a transformation of a text node that has the IBM1147 character set, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document containing a BR element, related to a "type checking issue." | 9.3 |
| 2010-05-28 | CVE-2010-2107 | Unspecified vulnerability in Google Chrome Unspecified vulnerability in Google Chrome before 5.0.375.55 allows attackers to cause a denial of service (memory error) or possibly have unspecified other impact via vectors related to the Safe Browsing functionality. | 10.0 |
| 2010-05-28 | CVE-2010-2105 | Unspecified vulnerability in Google Chrome Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs, which has unspecified impact and remote attack vectors. | 10.0 |
| 2010-05-03 | CVE-2010-1663 | Permissions, Privileges, and Access Controls vulnerability in Google Chrome The Google URL Parsing Library (aka google-url or GURL) in Google Chrome before 4.1.249.1064 allows remote attackers to bypass the Same Origin Policy via unspecified vectors. | 10.0 |
| 2010-04-23 | CVE-2010-1505 | Permissions, Privileges, and Access Controls vulnerability in Google Chrome Google Chrome before 4.1.249.1059 does not prevent pages from loading with the New Tab page's privileges, which has unknown impact and attack vectors. | 10.0 |
| 2010-04-23 | CVE-2010-1502 | Multiple Security vulnerability in RETIRED: Google Chrome prior to 4.1.249.1059 Unspecified vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to access local files via vectors related to "developer tools." | 9.3 |
| 2010-04-01 | CVE-2010-1233 | Numeric Errors vulnerability in Google Chrome Multiple integer overflows in Google Chrome before 4.1.249.1036 allow remote attackers to have an unspecified impact via vectors involving WebKit JavaScript objects. | 10.0 |
| 2010-04-01 | CVE-2010-1230 | Information Exposure vulnerability in Google Chrome Google Chrome before 4.1.249.1036 does not have the expected behavior for attempts to delete Web SQL Databases and clear the Strict Transport Security (STS) state, which has unspecified impact and attack vectors. | 10.0 |