CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Google » Chrome » 1.0.154.48 : Security Vulnerabilities Published In 2011 (Overflow)

Cpe Name:cpe:/a:google:chrome:1.0.154.48
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2011-3917 119 DoS Overflow 2011-12-13 2011-12-14
7.5
None Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in FileWatcher in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
2 CVE-2011-3916 119 DoS Overflow 2011-12-13 2011-12-14
5.0
None Remote Low Not required None None Partial
Google Chrome before 16.0.912.63 does not properly handle PDF cross references, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
3 CVE-2011-3915 119 DoS Overflow 2011-12-13 2011-12-14
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PDF fonts.
4 CVE-2011-3914 119 DoS Overflow 2011-12-13 2011-12-14
7.5
None Remote Low Not required Partial Partial Partial
The internationalization (aka i18n) functionality in Google V8, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.
5 CVE-2011-3911 119 DoS Overflow 2011-12-13 2011-12-14
5.0
None Remote Low Not required None None Partial
Google Chrome before 16.0.912.63 does not properly handle PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
6 CVE-2011-3910 119 DoS Overflow 2011-12-13 2011-12-14
5.0
None Remote Low Not required None None Partial
Google Chrome before 16.0.912.63 does not properly handle YUV video frames, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
7 CVE-2011-3909 119 DoS Overflow Mem. Corr. 2011-12-13 2012-04-20
7.5
None Remote Low Not required Partial Partial Partial
The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64-bit platforms does not properly manage property arrays, which allows remote attackers to cause a denial of service (memory corruption) via unspecified vectors.
8 CVE-2011-3908 119 DoS Overflow 2011-12-13 2012-03-13
5.0
None Remote Low Not required None None Partial
Google Chrome before 16.0.912.63 does not properly parse SVG documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
9 CVE-2011-3906 119 DoS Overflow 2011-12-13 2013-07-16
5.0
None Remote Low Not required None None Partial
The PDF parser in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
10 CVE-2011-3905 119 DoS Overflow 2011-12-13 2013-02-06
5.0
None Remote Low Not required None None Partial
libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
11 CVE-2011-3903 119 DoS Overflow 2011-12-13 2011-12-14
5.0
None Remote Low Not required None None Partial
Google Chrome before 16.0.912.63 does not properly perform regex matching, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
12 CVE-2011-3900 119 DoS Overflow 2011-11-17 2012-02-16
7.5
None Remote Low Not required Partial Partial Partial
Google V8, as used in Google Chrome before 15.0.874.121, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write operation.
13 CVE-2011-3896 119 DoS Overflow 2011-11-11 2012-02-16
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to shader variable mapping.
14 CVE-2011-3895 119 DoS Overflow 2011-11-11 2012-10-29
7.5
None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream.
15 CVE-2011-3894 119 DoS Overflow Mem. Corr. 2011-11-11 2012-02-16
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 15.0.874.120 does not properly perform VP8 decoding, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted stream.
16 CVE-2011-3893 119 DoS Overflow 2011-11-11 2012-10-29
5.0
None Remote Low Not required None None Partial
Google Chrome before 15.0.874.120 does not properly implement the MKV and Vorbis media handlers, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
17 CVE-2011-3889 119 DoS Overflow 2011-10-25 2012-11-06
7.5
None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the Web Audio implementation in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
18 CVE-2011-3873 119 DoS Exec Code Overflow Mem. Corr. 2011-10-04 2011-10-20
9.3
None Remote Medium Not required Complete Complete Complete
Google Chrome before 14.0.835.202 does not properly implement shader translation, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
19 CVE-2011-3234 119 DoS Overflow 2011-09-19 2011-10-20
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle boxes, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
20 CVE-2011-2881 119 DoS Overflow Mem. Corr. 2011-10-04 2011-10-05
6.8
None Remote Medium Not required Partial Partial Partial
Google Chrome before 14.0.835.202 does not properly handle Google V8 hidden objects, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted JavaScript code.
21 CVE-2011-2864 119 DoS Overflow 2011-09-19 2011-09-22
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle Tibetan characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
22 CVE-2011-2858 119 DoS Overflow 2011-09-19 2011-09-22
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle triangle arrays, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
23 CVE-2011-2851 119 DoS Overflow 2011-09-19 2011-09-22
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle video, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
24 CVE-2011-2850 119 DoS Overflow 2011-09-19 2011-09-22
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle Khmer characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
25 CVE-2011-2844 119 DoS Overflow 2011-09-19 2011-09-22
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly process MP3 files, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
26 CVE-2011-2843 119 DoS Overflow 2011-09-19 2011-09-22
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle media buffers, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
27 CVE-2011-2829 189 DoS Overflow 2011-08-29 2011-08-30
7.5
None Remote Low Not required Partial Partial Partial
Integer overflow in Google Chrome before 13.0.782.215 on 32-bit platforms allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving uniform arrays.
28 CVE-2011-2828 119 DoS Overflow 2011-08-29 2011-08-30
7.5
None Remote Low Not required Partial Partial Partial
Google V8, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.
29 CVE-2011-2806 119 DoS Exec Code Overflow Mem. Corr. 2011-08-29 2011-09-12
10.0
None Remote Low Not required Complete Complete Complete
Google Chrome before 13.0.782.215 on Windows does not properly handle vertex data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
30 CVE-2011-2803 119 DoS Overflow 2011-08-02 2011-08-11
5.0
None Remote Low Not required None None Partial
Google Chrome before 13.0.782.107 does not properly handle Skia paths, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
31 CVE-2011-2794 119 DoS Overflow 2011-08-02 2011-09-06
5.0
None Remote Low Not required None None Partial
Google Chrome before 13.0.782.107 does not properly perform text iteration, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
32 CVE-2011-2791 119 DoS Overflow 2011-08-02 2011-09-06
7.5
None Remote Low Not required Partial Partial Partial
The International Components for Unicode (ICU) functionality in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.
33 CVE-2011-2788 119 Overflow 2011-08-02 2011-10-20
6.8
None Remote Medium Not required Partial Partial Partial
Buffer overflow in the inspector serialization functionality in Google Chrome before 13.0.782.107 allows user-assisted remote attackers to have an unspecified impact via unknown vectors.
34 CVE-2011-2347 119 DoS Overflow Mem. Corr. 2011-06-29 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 12.0.742.112 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
35 CVE-2011-2345 119 DoS Overflow 2011-06-29 2012-01-26
5.0
None Remote Low Not required None None Partial
The NPAPI implementation in Google Chrome before 12.0.742.112 does not properly handle strings, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
36 CVE-2011-1817 119 DoS Overflow Mem. Corr. 2011-06-09 2012-01-26
5.0
None Remote Low Not required None None Partial
Google Chrome before 12.0.742.91 does not properly implement history deletion, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
37 CVE-2011-1807 119 Exec Code Overflow 2011-05-26 2012-01-26
10.0
None Remote Low Not required Complete Complete Complete
Google Chrome before 11.0.696.71 does not properly handle blobs, which allows remote attackers to execute arbitrary code via unspecified vectors that trigger an out-of-bounds write.
38 CVE-2011-1806 119 DoS Exec Code Overflow Mem. Corr. 2011-05-26 2012-01-26
10.0
None Remote Low Not required Complete Complete Complete
Google Chrome before 11.0.696.71 does not properly implement the GPU command buffer, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
39 CVE-2011-1800 189 DoS Overflow 2011-05-16 2012-01-26
6.8
None Remote Medium Not required Partial Partial Partial
Multiple integer overflows in the SVG Filters implementation in WebCore in WebKit in Google Chrome before 11.0.696.68 allow remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
40 CVE-2011-1437 189 DoS Overflow 2011-05-03 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
Multiple integer overflows in Google Chrome before 11.0.696.57 allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to float rendering.
41 CVE-2011-1302 119 Exec Code Overflow 2011-04-15 2012-01-26
10.0
None Remote Low Not required Complete Complete Complete
Heap-based buffer overflow in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors.
42 CVE-2011-1291 119 DoS Overflow 2011-03-25 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 10.0.648.204 does not properly handle base strings, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, related to a "buffer error."
43 CVE-2011-1286 119 DoS Overflow 2011-03-10 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
Google V8, as used in Google Chrome before 10.0.648.127, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger incorrect access to memory.
44 CVE-2011-1285 119 DoS Overflow Mem. Corr. 2011-03-10 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
The regular-expression functionality in Google Chrome before 10.0.648.127 does not properly implement reentrancy, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
45 CVE-2011-1203 119 DoS Overflow 2011-03-10 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 10.0.648.127 does not properly handle SVG cursors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."
46 CVE-2011-1201 119 DoS Overflow 2011-03-10 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
The context implementation in WebKit, as used in Google Chrome before 10.0.648.127, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."
47 CVE-2011-1198 119 DoS Overflow 2011-03-10 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
The video functionality in Google Chrome before 10.0.648.127 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger use of a malformed "out-of-bounds structure."
48 CVE-2011-1197 119 DoS Overflow 2011-03-10 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 10.0.648.127 does not properly perform table painting, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."
49 CVE-2011-1196 119 DoS Overflow 2011-03-10 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
The OGG container implementation in Google Chrome before 10.0.648.127 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.
50 CVE-2011-1189 119 DoS Overflow 2011-03-10 2012-01-26
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 10.0.648.127 does not properly perform box layout, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale node."
Total number of vulnerabilities : 62   Page : 1 (This Page)2
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.