CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Google » Chrome » 4.1.249.1012 : Security Vulnerabilities (Overflow)

Cpe Name:cpe:/a:google:chrome:4.1.249.1012
CVSS Scores Greater Than: 0   1   2   3   4   5   6   7   8   9  
Copy Results Download Results Select Table
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2012-0725 119 DoS Overflow Mem. Corr. 2012-04-06 2012-12-05
10.0
 None Remote Low Not required Complete Complete Complete
Adobe Flash Player before 11.2.202.229 in Google Chrome before 18.0.1025.151 allow attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2012-0724.
2 CVE-2012-0724 119 DoS Overflow Mem. Corr. 2012-04-06 2012-12-05
10.0
 None Remote Low Not required Complete Complete Complete
Adobe Flash Player before 11.2.202.229 in Google Chrome before 18.0.1025.151 allow attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2012-0725.
3 CVE-2011-3972 119 DoS Overflow 2012-02-08 2012-08-13
5.0
 None Remote Low Not required None None Partial
The shader translator implementation in Google Chrome before 17.0.963.46 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
4 CVE-2011-3970 119 DoS Overflow 2012-02-08 2012-08-13
5.0
 None Remote Low Not required None None Partial
libxslt, as used in Google Chrome before 17.0.963.46, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
5 CVE-2011-3963 119 DoS Overflow 2012-02-08 2012-08-13
5.0
 None Remote Low Not required None None Partial
Google Chrome before 17.0.963.46 does not properly handle PDF FAX images, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
6 CVE-2011-3962 119 DoS Overflow 2012-02-08 2012-08-13
5.0
 None Remote Low Not required None None Partial
Google Chrome before 17.0.963.46 does not properly perform path clipping, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
7 CVE-2011-3960 119 DoS Overflow 2012-02-08 2012-08-13
5.0
 None Remote Low Not required None None Partial
Google Chrome before 17.0.963.46 does not properly decode audio data, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
8 CVE-2011-3959 119 DoS Overflow 2012-02-08 2012-08-13
7.5
 None Remote Low Not required Partial Partial Partial
Buffer overflow in the locale implementation in Google Chrome before 17.0.963.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
9 CVE-2011-3926 119 DoS Overflow 2012-01-23 2012-09-21
7.5
 None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the tree builder in Google Chrome before 16.0.912.77 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
10 CVE-2011-3922 119 DoS Overflow 2012-01-07 2012-02-01
7.5
 None Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to glyph handling.
11 CVE-2011-3919 119 DoS Overflow 2012-01-07 2013-02-06
7.5
 None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in libxml2, as used in Google Chrome before 16.0.912.75, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
12 CVE-2011-3917 119 DoS Overflow 2011-12-13 2011-12-14
7.5
 None Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in FileWatcher in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
13 CVE-2011-3916 119 DoS Overflow 2011-12-13 2011-12-14
5.0
 None Remote Low Not required None None Partial
Google Chrome before 16.0.912.63 does not properly handle PDF cross references, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
14 CVE-2011-3915 119 DoS Overflow 2011-12-13 2011-12-14
7.5
 None Remote Low Not required Partial Partial Partial
Buffer overflow in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PDF fonts.
15 CVE-2011-3914 119 DoS Overflow 2011-12-13 2011-12-14
7.5
 None Remote Low Not required Partial Partial Partial
The internationalization (aka i18n) functionality in Google V8, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.
16 CVE-2011-3911 119 DoS Overflow 2011-12-13 2011-12-14
5.0
 None Remote Low Not required None None Partial
Google Chrome before 16.0.912.63 does not properly handle PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
17 CVE-2011-3910 119 DoS Overflow 2011-12-13 2011-12-14
5.0
 None Remote Low Not required None None Partial
Google Chrome before 16.0.912.63 does not properly handle YUV video frames, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
18 CVE-2011-3909 119 DoS Overflow Mem. Corr. 2011-12-13 2012-04-20
7.5
 None Remote Low Not required Partial Partial Partial
The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64-bit platforms does not properly manage property arrays, which allows remote attackers to cause a denial of service (memory corruption) via unspecified vectors.
19 CVE-2011-3908 119 DoS Overflow 2011-12-13 2012-03-13
5.0
 None Remote Low Not required None None Partial
Google Chrome before 16.0.912.63 does not properly parse SVG documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
20 CVE-2011-3906 119 DoS Overflow 2011-12-13 2011-12-14
5.0
 None Remote Low Not required None None Partial
The PDF parser in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
21 CVE-2011-3905 119 DoS Overflow 2011-12-13 2013-02-06
5.0
 None Remote Low Not required None None Partial
libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
22 CVE-2011-3903 119 DoS Overflow 2011-12-13 2011-12-14
5.0
 None Remote Low Not required None None Partial
Google Chrome before 16.0.912.63 does not properly perform regex matching, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
23 CVE-2011-3900 119 DoS Overflow 2011-11-17 2012-02-16
7.5
 None Remote Low Not required Partial Partial Partial
Google V8, as used in Google Chrome before 15.0.874.121, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write operation.
24 CVE-2011-3896 119 DoS Overflow 2011-11-11 2012-02-16
7.5
 None Remote Low Not required Partial Partial Partial
Buffer overflow in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to shader variable mapping.
25 CVE-2011-3895 119 DoS Overflow 2011-11-11 2012-10-29
7.5
 None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream.
26 CVE-2011-3894 119 DoS Overflow Mem. Corr. 2011-11-11 2012-02-16
7.5
 None Remote Low Not required Partial Partial Partial
Google Chrome before 15.0.874.120 does not properly perform VP8 decoding, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted stream.
27 CVE-2011-3893 119 DoS Overflow 2011-11-11 2012-10-29
5.0
 None Remote Low Not required None None Partial
Google Chrome before 15.0.874.120 does not properly implement the MKV and Vorbis media handlers, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
28 CVE-2011-3889 119 DoS Overflow 2011-10-25 2012-11-06
7.5
 None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the Web Audio implementation in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
29 CVE-2011-3873 119 DoS Exec Code Overflow Mem. Corr. 2011-10-04 2011-10-20
9.3
 None Remote Medium Not required Complete Complete Complete
Google Chrome before 14.0.835.202 does not properly implement shader translation, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
30 CVE-2011-3234 119 DoS Overflow 2011-09-19 2011-10-20
5.0
 None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle boxes, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
31 CVE-2011-3066 119 DoS Overflow 2012-04-05 2013-02-14
5.0
 None Remote Low Not required None None Partial
Skia, as used in Google Chrome before 18.0.1025.151, does not properly perform clipping, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
32 CVE-2011-3065 119 DoS Overflow Mem. Corr. 2012-03-30 2013-02-14
7.5
 None Remote Low Not required Partial Partial Partial
Skia, as used in Google Chrome before 18.0.1025.142, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
33 CVE-2011-3060 119 DoS Overflow 2012-03-30 2013-02-14
5.0
 None Remote Low Not required None None Partial
Google Chrome before 18.0.1025.142 does not properly handle text fragments, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
34 CVE-2011-3059 119 DoS Overflow 2012-03-30 2013-02-14
5.0
 None Remote Low Not required None None Partial
Google Chrome before 18.0.1025.142 does not properly handle SVG text elements, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
35 CVE-2011-3052 119 DoS Overflow Mem. Corr. 2012-03-22 2012-08-15
7.5
 None Remote Low Not required Partial Partial Partial
The WebGL implementation in Google Chrome before 17.0.963.83 does not properly handle CANVAS elements, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
36 CVE-2011-3047 119 DoS Exec Code Overflow Mem. Corr. 2012-03-10 2012-08-13
10.0
 None Remote Low Not required Complete Complete Complete
The GPU process in Google Chrome before 17.0.963.79 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) by leveraging an error in the plug-in loading mechanism.
37 CVE-2011-3033 119 DoS Overflow 2012-03-05 2012-08-13
7.5
 None Remote Low Not required Partial Partial Partial
Buffer overflow in Skia, as used in Google Chrome before 17.0.963.65, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
38 CVE-2011-3026 189 DoS Overflow 2012-02-16 2012-09-21
7.5
 None Remote Low Not required Partial Partial Partial
Integer overflow in libpng, as used in Google Chrome before 17.0.963.56, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an integer truncation.
39 CVE-2011-3019 119 DoS Overflow 2012-02-16 2012-08-13
6.8
 None Remote Medium Not required Partial Partial Partial
Heap-based buffer overflow in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska video (aka MKV) file.
40 CVE-2011-3018 119 DoS Overflow 2012-02-16 2012-08-13
7.5
 None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to path rendering.
41 CVE-2011-3015 189 DoS Overflow 2012-02-16 2012-08-13
7.5
 None Remote Low Not required Partial Partial Partial
Multiple integer overflows in the PDF codecs in Google Chrome before 17.0.963.56 allow remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
42 CVE-2011-2881 119 DoS Overflow Mem. Corr. 2011-10-04 2011-10-05
6.8
 None Remote Medium Not required Partial Partial Partial
Google Chrome before 14.0.835.202 does not properly handle Google V8 hidden objects, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted JavaScript code.
43 CVE-2011-2864 119 DoS Overflow 2011-09-19 2011-09-22
5.0
 None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle Tibetan characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
44 CVE-2011-2858 119 DoS Overflow 2011-09-19 2011-09-22
5.0
 None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle triangle arrays, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
45 CVE-2011-2851 119 DoS Overflow 2011-09-19 2011-09-22
5.0
 None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle video, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
46 CVE-2011-2850 119 DoS Overflow 2011-09-19 2011-09-22
5.0
 None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle Khmer characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
47 CVE-2011-2844 119 DoS Overflow 2011-09-19 2011-09-22
5.0
 None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly process MP3 files, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
48 CVE-2011-2843 119 DoS Overflow 2011-09-19 2011-09-22
5.0
 None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle media buffers, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
49 CVE-2011-2829 189 DoS Overflow 2011-08-29 2011-08-30
7.5
 None Remote Low Not required Partial Partial Partial
Integer overflow in Google Chrome before 13.0.782.215 on 32-bit platforms allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving uniform arrays.
50 CVE-2011-2828 119 DoS Overflow 2011-08-29 2011-08-30
7.5
 None Remote Low Not required Partial Partial Partial
Google V8, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.
Total number of vulnerabilities : 105   Page : 1 (This Page)2 3
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.