Apple : Security Vulnerabilities, CVEs, Published In September 2011
The Keychain implementation in Apple Mac OS X 10.6.8 and earlier does not properly handle an untrusted attribute of a Certification Authority certificate, which makes it easier for man-in-the-middle attackers to spoof arbitrary SSL servers via an Extended Validation certificate, as demonstrated by https access with Safari.
Max CVSS
4.3
EPSS Score
0.15%
Published
2011-09-12
Updated
2017-08-29
Google Chrome before 14.0.835.163 does not properly handle boxes, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
Max CVSS
5.0
EPSS Score
1.54%
Published
2011-09-19
Updated
2020-05-08
Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to table styles.
Max CVSS
7.5
EPSS Score
3.11%
Published
2011-09-19
Updated
2020-05-08
Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the focus controller.
Max CVSS
6.8
EPSS Score
5.71%
Published
2011-09-19
Updated
2020-05-08
Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale node."
Max CVSS
6.8
EPSS Score
2.79%
Published
2011-09-19
Updated
2020-05-08
Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to "ruby / table style handing."
Max CVSS
6.8
EPSS Score
6.47%
Published
2011-09-19
Updated
2020-05-08
Use-after-free vulnerability in the document loader in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document.
Max CVSS
6.8
EPSS Score
5.39%
Published
2011-09-19
Updated
2020-05-08
Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to unload event handling.
Max CVSS
6.8
EPSS Score
5.71%
Published
2011-09-19
Updated
2020-05-08
Double free vulnerability in libxml2, as used in Google Chrome before 14.0.835.163, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling.
Max CVSS
6.8
EPSS Score
4.02%
Published
2011-09-19
Updated
2020-05-08
Apple QuickTime before 7.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted image description associated with an mp4v tag in a movie file.
Max CVSS
9.3
EPSS Score
7.47%
Published
2011-09-06
Updated
2018-10-10
10 vulnerabilities found