Google

Chrome

3858 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2010-2299

  • EPSS 5.44%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Clipboard::DispatchObject function in app/clipboard/clipboard.cc in Google Chrome before 5.0.375.70 does not properly handle CBF_SMBITMAP objects in a ViewHostMsg_ClipboardWriteObjectsAsync message, which might allow remote attackers to execute a...

10

CVE-2010-2300

  • EPSS 23.38%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the Element::normalizeAttributes function in dom/Element.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) vi...

4.3

CVE-2010-2301

Exploit
  • EPSS 0.5%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in editing/markup.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to inject arbitrary web script or HTML via vectors related to the node.innerHTML property of a TEXTAREA ele...

10

CVE-2010-2302

  • EPSS 6.11%
  • Veröffentlicht 15.06.2010 18:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via vectors involving remote fonts in conjunction with sh...

9.3

CVE-2010-1770

  • EPSS 6.19%
  • Veröffentlicht 11.06.2010 19:30:20
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Apple Safari before 4.1 on Mac OS X 10.4, and Google Chrome before 5.0.375.70 does not properly handle a transformation of a text node that has the IBM1147 character set, wh...

4.3

CVE-2010-2120

Exploit
  • EPSS 0.51%
  • Veröffentlicht 01.06.2010 20:30:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome 1.0.154.48 allows remote attackers to cause a denial of service (resource consumption) via JavaScript code containing an infinite loop that creates IFRAME elements for invalid news:// URIs.

10

CVE-2010-2105

  • EPSS 0.25%
  • Veröffentlicht 28.05.2010 18:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs, which has unspecified impact and remote attack vectors.

4.3

CVE-2010-2106

  • EPSS 0.26%
  • Veröffentlicht 28.05.2010 18:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Google Chrome before 5.0.375.55 might allow remote attackers to spoof the URL bar via vectors involving unload event handlers.

10

CVE-2010-2107

  • EPSS 0.25%
  • Veröffentlicht 28.05.2010 18:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Google Chrome before 5.0.375.55 allows attackers to cause a denial of service (memory error) or possibly have unspecified other impact via vectors related to the Safe Browsing functionality.

7.5

CVE-2010-2108

  • EPSS 0.25%
  • Veröffentlicht 28.05.2010 18:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Google Chrome before 5.0.375.55 allows remote attackers to bypass the whitelist-mode plugin blocker via unknown vectors.