CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Google » Chrome » 3.0.195.24 : Security Vulnerabilities

Cpe Name:cpe:/a:google:chrome:3.0.195.24
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
451 CVE-2011-3017 399 DoS 2012-02-16 2018-01-09
7.5
None Remote Low Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to database handling.
452 CVE-2011-3016 399 DoS 2012-02-16 2018-01-09
7.5
None Remote Low Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving counter nodes, related to a "read-after-free" issue.
453 CVE-2011-3015 189 DoS Overflow 2012-02-16 2018-01-09
7.5
None Remote Low Not required Partial Partial Partial
Multiple integer overflows in the PDF codecs in Google Chrome before 17.0.963.56 allow remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
454 CVE-2011-2881 119 DoS Overflow Mem. Corr. 2011-10-04 2017-09-18
6.8
None Remote Medium Not required Partial Partial Partial
Google Chrome before 14.0.835.202 does not properly handle Google V8 hidden objects, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted JavaScript code.
455 CVE-2011-2880 399 DoS 2011-10-04 2017-09-18
6.8
None Remote Medium Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 14.0.835.202 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the Google V8 bindings.
456 CVE-2011-2879 20 DoS 2011-10-04 2017-09-18
6.8
None Remote Medium Not required Partial Partial Partial
Google Chrome before 14.0.835.202 does not properly consider object lifetimes and thread safety during the handling of audio nodes, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
457 CVE-2011-2878 264 Bypass 2011-10-04 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 14.0.835.202 does not properly restrict access to the window prototype, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
458 CVE-2011-2877 20 DoS 2011-10-04 2018-01-05
6.8
None Remote Medium Not required Partial Partial Partial
Google Chrome before 14.0.835.202 does not properly handle SVG text, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "stale font."
459 CVE-2011-2876 399 DoS 2011-10-04 2017-09-18
6.8
None Remote Medium Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 14.0.835.202 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a text line box.
460 CVE-2011-2875 20 DoS 2011-09-19 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google V8, as used in Google Chrome before 14.0.835.163, does not properly perform object sealing, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion."
461 CVE-2011-2874 310 2011-09-19 2017-09-18
6.8
None Remote Medium Not required Partial Partial Partial
Google Chrome before 14.0.835.163 does not perform an expected pin operation for a self-signed certificate during a session, which has unspecified impact and remote attack vectors.
462 CVE-2011-2864 119 DoS Overflow 2011-09-19 2017-09-18
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle Tibetan characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
463 CVE-2011-2862 264 2011-09-19 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google V8, as used in Google Chrome before 14.0.835.163, does not properly restrict access to built-in objects, which has unspecified impact and remote attack vectors.
464 CVE-2011-2861 20 2011-09-19 2017-09-18
6.8
None Remote Medium Not required Partial Partial Partial
Google Chrome before 14.0.835.163 does not properly handle strings in PDF documents, which allows remote attackers to have an unspecified impact via a crafted document that triggers an incorrect read operation.
465 CVE-2011-2860 399 DoS 2011-09-19 2018-01-05
7.5
None Remote Low Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to table styles.
466 CVE-2011-2859 264 2011-09-19 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 14.0.835.163 uses incorrect permissions for non-gallery pages, which has unspecified impact and attack vectors.
467 CVE-2011-2858 119 DoS Overflow 2011-09-19 2017-09-18
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle triangle arrays, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
468 CVE-2011-2857 399 DoS 2011-09-19 2018-01-05
7.5
None Remote Low Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the focus controller.
469 CVE-2011-2856 264 Bypass 2011-09-19 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google V8, as used in Google Chrome before 14.0.835.163, allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
470 CVE-2011-2855 20 DoS 2011-09-19 2018-01-05
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale node."
471 CVE-2011-2854 399 DoS 2011-09-19 2018-01-05
7.5
None Remote Low Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to "ruby / table style handing."
472 CVE-2011-2853 399 DoS 2011-09-19 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to plug-in handling.
473 CVE-2011-2852 189 DoS 2011-09-19 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Off-by-one error in Google V8, as used in Google Chrome before 14.0.835.163, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
474 CVE-2011-2851 119 DoS Overflow 2011-09-19 2017-09-18
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle video, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
475 CVE-2011-2850 119 DoS Overflow 2011-09-19 2017-09-18
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle Khmer characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
476 CVE-2011-2849 DoS 2011-09-19 2017-09-18
4.3
None Remote Medium Not required None None Partial
The WebSockets implementation in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
477 CVE-2011-2848 20 2011-09-19 2017-09-18
5.8
None Remote Medium Not required Partial Partial None
Google Chrome before 14.0.835.163 allows user-assisted remote attackers to spoof the URL bar via vectors related to the forward button.
478 CVE-2011-2847 399 DoS 2011-09-19 2018-01-05
6.8
None Remote Medium Not required Partial Partial Partial
Use-after-free vulnerability in the document loader in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document.
479 CVE-2011-2846 399 DoS 2011-09-19 2018-01-05
6.8
None Remote Medium Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to unload event handling.
480 CVE-2011-2845 20 2011-10-25 2017-09-18
6.8
None Remote Medium Not required Partial Partial Partial
Google Chrome before 15.0.874.102 does not properly handle history data, which allows user-assisted remote attackers to spoof the URL bar via unspecified vectors.
481 CVE-2011-2844 119 DoS Overflow 2011-09-19 2017-09-18
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly process MP3 files, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
482 CVE-2011-2843 119 DoS Overflow 2011-09-19 2017-09-18
5.0
None Remote Low Not required None None Partial
Google Chrome before 14.0.835.163 does not properly handle media buffers, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
483 CVE-2011-2842 20 2011-09-19 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
The installer in Google Chrome before 14.0.835.163 on Mac OS X does not properly handle lock files, which has unspecified impact and attack vectors.
484 CVE-2011-2841 20 DoS 2011-09-19 2017-10-04
6.8
None Remote Medium Not required Partial Partial Partial
Google Chrome before 14.0.835.163 does not properly perform garbage collection during the processing of PDF documents, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document.
485 CVE-2011-2840 20 2011-09-19 2017-09-18
5.8
None Remote Medium Not required Partial Partial None
Google Chrome before 14.0.835.163 allows user-assisted remote attackers to spoof the URL bar via vectors related to "unusual user interaction."
486 CVE-2011-2839 20 DoS 2011-08-29 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
The PDF implementation in Google Chrome before 13.0.782.215 on Linux does not properly use the memset library function, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
487 CVE-2011-2838 20 2011-09-19 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 14.0.835.163 does not properly consider the MIME type during the loading of a plug-in, which has unspecified impact and remote attack vectors.
488 CVE-2011-2837 20 2011-09-19 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 14.0.835.163 on Linux does not use the PIC and PIE compiler options for position-independent code, which has unspecified impact and attack vectors.
489 CVE-2011-2836 264 2011-09-19 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 14.0.835.163 does not require Infobar interaction before use of the Windows Media Player plug-in, which makes it easier for remote attackers to have an unspecified impact via crafted Flash content.
490 CVE-2011-2835 362 DoS 2011-09-19 2017-09-18
6.8
None Remote Medium Not required Partial Partial Partial
Race condition in Google Chrome before 14.0.835.163 allows attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the certificate cache.
491 CVE-2011-2834 399 DoS 2011-09-19 2017-09-18
6.8
None Remote Medium Not required Partial Partial Partial
Double free vulnerability in libxml2, as used in Google Chrome before 14.0.835.163, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling.
492 CVE-2011-2830 399 DoS 2011-10-27 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google V8, as used in Google Chrome before 14.0.835.163, does not properly implement script object wrappers, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via unknown vectors.
493 CVE-2011-2829 189 DoS Overflow 2011-08-29 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Integer overflow in Google Chrome before 13.0.782.215 on 32-bit platforms allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving uniform arrays.
494 CVE-2011-2828 119 DoS Overflow 2011-08-29 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google V8, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.
495 CVE-2011-2827 399 DoS 2011-08-29 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to text searching.
496 CVE-2011-2826 264 Bypass 2011-08-29 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Google Chrome before 13.0.782.215 allows remote attackers to bypass the Same Origin Policy via vectors related to empty origins.
497 CVE-2011-2825 399 DoS 2011-08-29 2018-01-05
7.5
None Remote Low Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving custom fonts.
498 CVE-2011-2824 399 DoS 2011-08-29 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving counter nodes.
499 CVE-2011-2823 399 DoS 2011-08-29 2017-09-18
7.5
None Remote Low Not required Partial Partial Partial
Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a line box.
500 CVE-2011-2822 20 2011-08-29 2018-11-29
10.0
None Remote Low Not required Complete Complete Complete
Google Chrome before 13.0.782.215 on Windows does not properly parse URLs located on the command line, which has unspecified impact and attack vectors.
Total number of vulnerabilities : 760   Page : 1 2 3 4 5 6 7 8 9 10 (This Page)11 12 13 14 15 16
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.