Google

Chrome

3858 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2010-1234

Exploit
  • EPSS 0.58%
  • Veröffentlicht 01.04.2010 22:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Google Chrome before 4.1.249.1036 allows remote attackers to truncate the URL shown in the HTTP Basic Authentication dialog via unknown vectors.

4.3

CVE-2010-1235

Exploit
  • EPSS 0.24%
  • Veröffentlicht 01.04.2010 22:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Google Chrome before 4.1.249.1036 allows remote attackers to trigger the omission of a download warning dialog via unknown vectors.

4.3

CVE-2010-1236

Exploit
  • EPSS 0.62%
  • Veröffentlicht 01.04.2010 22:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The protocolIs function in platform/KURLGoogle.cpp in WebCore in WebKit before r55822, as used in Google Chrome before 4.1.249.1036 and Flock Browser 3.x before 3.0.0.4112, does not properly handle whitespace at the beginning of a URL, which allows r...

7.5

CVE-2010-1237

  • EPSS 0.52%
  • Veröffentlicht 01.04.2010 22:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome 4.1 BETA before 4.1.249.1036 allows remote attackers to cause a denial of service (memory error) or possibly have unspecified other impact via an empty SVG element.

5

CVE-2010-1029

Exploit
  • EPSS 32.17%
  • Veröffentlicht 19.03.2010 21:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Stack consumption vulnerability in the WebCore::CSSSelector function in WebKit, as used in Apple Safari 4.0.4, Apple Safari on iPhone OS and iPhone OS for iPod touch, and Google Chrome 4.0.249, allows remote attackers to cause a denial of service (ap...

6.8

CVE-2010-0661

  • EPSS 1.62%
  • Veröffentlicht 18.02.2010 18:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome before 4.0.249.78, allows remote attackers to bypass the Same Origin Policy via vectors involving the window.open method.

5

CVE-2010-0662

  • EPSS 0.49%
  • Veröffentlicht 18.02.2010 18:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not use the correct variables in calculations designed to prevent integer overflows, which allows attackers to leverage renderer access ...

5

CVE-2010-0663

  • EPSS 0.38%
  • Veröffentlicht 18.02.2010 18:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data, which might allow remote attackers to obtain potentially sensitive infor...

5

CVE-2010-0664

Exploit
  • EPSS 1.32%
  • Veröffentlicht 18.02.2010 18:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Stack consumption vulnerability in the ChildProcessSecurityPolicy::CanRequestURL function in browser/child_process_security_policy.cc in Google Chrome before 4.0.249.78 allows remote attackers to cause a denial of service (memory consumption and appl...

4.3

CVE-2010-0643

  • EPSS 0.35%
  • Veröffentlicht 18.02.2010 18:00:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are unavailable, which allows remote HTTP servers to obtain potentially sensitive information about the identity of a client user via s...