Google

Chrome

3675 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2010-2651

  • EPSS 1.02%
  • Veröffentlicht 06.07.2010 17:17:14
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Cascading Style Sheets (CSS) implementation in Google Chrome before 5.0.375.99 does not properly perform style rendering, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via...

5

CVE-2010-2652

Exploit
  • EPSS 0.16%
  • Veröffentlicht 06.07.2010 17:17:14
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 5.0.375.99 does not properly implement modal dialogs, which allows attackers to cause a denial of service (application crash) via unspecified vectors.

9.8

CVE-2010-1205

Exploit
  • EPSS 17.03%
  • Veröffentlicht 30.06.2010 18:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.

4.3

CVE-2010-2295

  • EPSS 1.18%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

page/EventHandler.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 does not properly handle a change of the focused frame during the dispatching of keydown, which allows user-assisted remote attackers to redirect keystrokes via a crafted H...

9.3

CVE-2010-2296

  • EPSS 0.39%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The implementation of unspecified DOM methods in Google Chrome before 5.0.375.70 allows remote attackers to bypass the Same Origin Policy via unknown vectors.

9.3

CVE-2010-2297

  • EPSS 8.24%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

rendering/FixedTableLayout.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an HTML document that has a large colspan attribute...

10

CVE-2010-2298

  • EPSS 0.41%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

browser/renderer_host/database_dispatcher_host.cc in Google Chrome before 5.0.375.70 on Linux does not properly handle ViewHostMsg_DatabaseOpenFile messages in chroot-based sandboxing, which allows remote attackers to bypass intended sandbox restrict...

10

CVE-2010-2299

  • EPSS 5.18%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Clipboard::DispatchObject function in app/clipboard/clipboard.cc in Google Chrome before 5.0.375.70 does not properly handle CBF_SMBITMAP objects in a ViewHostMsg_ClipboardWriteObjectsAsync message, which might allow remote attackers to execute a...

10

CVE-2010-2300

  • EPSS 26.3%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the Element::normalizeAttributes function in dom/Element.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) vi...

4.3

CVE-2010-2301

Exploit
  • EPSS 0.5%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in editing/markup.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to inject arbitrary web script or HTML via vectors related to the node.innerHTML property of a TEXTAREA ele...