CVE-2011-3926
- EPSS 1.83%
- Veröffentlicht 24.01.2012 04:03:36
- Zuletzt bearbeitet 16.06.2026 23:34:10
Heap-based buffer overflow in the tree builder in Google Chrome before 16.0.912.77 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
CVE-2011-3928
- EPSS 1.67%
- Veröffentlicht 24.01.2012 04:03:36
- Zuletzt bearbeitet 16.06.2026 23:34:10
Use-after-free vulnerability in Google Chrome before 16.0.912.77 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to DOM handling.
CVE-2011-3919
- EPSS 2.4%
- Veröffentlicht 07.01.2012 11:55:13
- Zuletzt bearbeitet 16.06.2026 23:34:09
Heap-based buffer overflow in libxml2, as used in Google Chrome before 16.0.912.75, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
- EPSS 1.7%
- Veröffentlicht 13.12.2011 21:55:01
- Zuletzt bearbeitet 16.06.2026 23:34:08
Google Chrome before 16.0.912.63 does not properly parse SVG documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
- EPSS 1.65%
- Veröffentlicht 13.12.2011 21:55:01
- Zuletzt bearbeitet 16.06.2026 23:34:08
The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64-bit platforms does not properly manage property arrays, which allows remote attackers to cause a denial of service (memory corruption) via unspecified vectors.
CVE-2011-3913
- EPSS 1.66%
- Veröffentlicht 13.12.2011 21:55:01
- Zuletzt bearbeitet 16.06.2026 23:34:08
Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to Range handling.
CVE-2011-3439
- EPSS 5.33%
- Veröffentlicht 11.11.2011 18:55:01
- Zuletzt bearbeitet 16.06.2026 23:33:17
FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font in a document.
CVE-2011-3440
- EPSS 0.31%
- Veröffentlicht 11.11.2011 18:55:01
- Zuletzt bearbeitet 16.06.2026 23:33:17
The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate attackers to access data by opening a Smart Cover during power-off confirmation.
CVE-2011-3441
- EPSS 1.59%
- Veröffentlicht 11.11.2011 18:55:01
- Zuletzt bearbeitet 16.06.2026 23:33:17
libinfo in Apple iOS before 5.0.1 does not properly formulate domain-name queries, which allows remote attackers to obtain sensitive information via a crafted DNS hostname.
CVE-2011-3442
- EPSS 0.36%
- Veröffentlicht 11.11.2011 18:55:01
- Zuletzt bearbeitet 16.06.2026 23:33:17
The kernel in Apple iOS before 5.0.1 does not ensure the validity of flag combinations for an mmap system call, which allows local users to execute arbitrary unsigned code via a crafted app.