0.3.154.0 : Security Vulnerabilities Published In 2010 (Execute Code)

Cpe Name:cpe:/a:google:chrome:0.3.154.0

2010 : January February March April May June July August September October November December

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : Cve Number Descending Cve Number Ascending CVSS Score Descending Number Of Exploits Descending

Copy Results Download Results Select Table

#	CVE ID	CWE ID	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-2010-4206	119	DoS Exec Code Overflow	2010-11-05	2011-07-18	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
Array index error in the FEBlend::apply function in WebCore/platform/graphics/filters/FEBlend.cpp in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted SVG document, related to effects in the application of filters.
2	CVE-2010-4203	119	DoS Exec Code Overflow Mem. Corr.	2010-11-05	2011-07-18	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
WebM libvpx (aka the VP8 Codec SDK) before 0.9.5, as used in Google Chrome before 7.0.517.44, allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via invalid frames.
3	CVE-2010-3729	119	Exec Code Overflow	2010-10-05	2011-07-18	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
The SPDY protocol implementation in Google Chrome before 6.0.472.62 does not properly manage buffers, which might allow remote attackers to execute arbitrary code via unspecified vectors.
4	CVE-2010-3257	399	DoS Exec Code	2010-09-07	2011-07-18	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 6.0.472.53, and webkitgtk before 1.2.6, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving element focus.
5	CVE-2010-3116	399	DoS Exec Code	2010-08-24	2011-07-18	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
Multiple use-after-free vulnerabilities in WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to improper handling of MIME types by plug-ins.
6	CVE-2010-1824	399	DoS Exec Code	2010-09-24	2011-07-18	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
Use-after-free vulnerability in WebKit, as used in Apple iTunes before 10.2 on Windows, Apple Safari, and Google Chrome before 6.0.472.59, allows remote attackers to execute arbitrary code or cause a denial of service via vectors related to SVG styles, the DOM tree, and error messages.
7	CVE-2010-1822	189	DoS Exec Code	2010-10-04	2011-07-19	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0.472.62, does not properly perform a cast of an unspecified variable, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an SVG element in a non-SVG document.
8	CVE-2010-0659	399	Exec Code	2010-02-18	2012-01-26	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
The image decoder in WebKit before r52833, as used in Google Chrome before 4.0.249.78, does not properly handle a failure of memory allocation, which allows remote attackers to execute arbitrary code in the Chrome sandbox via a malformed GIF file that specifies a large size.
9	CVE-2010-0658	189	DoS Exec Code Overflow Mem. Corr.	2010-02-18	2012-01-26	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
Multiple integer overflows in Skia, as used in Google Chrome before 4.0.249.78, allow remote attackers to execute arbitrary code in the Chrome sandbox or cause a denial of service (memory corruption and application crash) via vectors involving CANVAS elements.
10	CVE-2010-0655	399	DoS Exec Code	2010-02-18	2012-01-26	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving the display of a blocked popup window during navigation to a different web site.
11	CVE-2010-0647	94	Exec Code	2010-02-18	2012-01-26	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
WebKit before r53525, as used in Google Chrome before 4.0.249.89, allows remote attackers to execute arbitrary code in the Chrome sandbox via a malformed RUBY element, as demonstrated by a <ruby>><table><rt> sequence.
12	CVE-2010-0646	189	Exec Code	2010-02-18	2012-01-26	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
Multiple integer signedness errors in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via crafted use of JavaScript arrays.
13	CVE-2010-0645	189	Exec Code Overflow	2010-02-18	2012-01-26	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via crafted use of JavaScript arrays.

Total number of vulnerabilities : 13 Page : 1 (This Page)