CVE-2010-2651
- EPSS 1.3%
- Veröffentlicht 06.07.2010 17:17:14
- Zuletzt bearbeitet 16.06.2026 23:21:09
The Cascading Style Sheets (CSS) implementation in Google Chrome before 5.0.375.99 does not properly perform style rendering, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via...
- EPSS 0.72%
- Veröffentlicht 06.07.2010 17:17:14
- Zuletzt bearbeitet 16.06.2026 23:21:09
Google Chrome before 5.0.375.99 does not properly implement modal dialogs, which allows attackers to cause a denial of service (application crash) via unspecified vectors.
CVE-2010-1205
- EPSS 43.38%
- Veröffentlicht 30.06.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:50
Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.
CVE-2010-2295
- EPSS 1.39%
- Veröffentlicht 15.06.2010 18:00:02
- Zuletzt bearbeitet 16.06.2026 23:20:29
page/EventHandler.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 does not properly handle a change of the focused frame during the dispatching of keydown, which allows user-assisted remote attackers to redirect keystrokes via a crafted H...
CVE-2010-2296
- EPSS 1.53%
- Veröffentlicht 15.06.2010 18:00:02
- Zuletzt bearbeitet 16.06.2026 23:20:29
The implementation of unspecified DOM methods in Google Chrome before 5.0.375.70 allows remote attackers to bypass the Same Origin Policy via unknown vectors.
CVE-2010-2297
- EPSS 2.81%
- Veröffentlicht 15.06.2010 18:00:02
- Zuletzt bearbeitet 16.06.2026 23:20:29
rendering/FixedTableLayout.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an HTML document that has a large colspan attribute...
- EPSS 1.58%
- Veröffentlicht 15.06.2010 18:00:02
- Zuletzt bearbeitet 16.06.2026 23:20:29
browser/renderer_host/database_dispatcher_host.cc in Google Chrome before 5.0.375.70 on Linux does not properly handle ViewHostMsg_DatabaseOpenFile messages in chroot-based sandboxing, which allows remote attackers to bypass intended sandbox restrict...
- EPSS 2.64%
- Veröffentlicht 15.06.2010 18:00:02
- Zuletzt bearbeitet 16.06.2026 23:20:29
The Clipboard::DispatchObject function in app/clipboard/clipboard.cc in Google Chrome before 5.0.375.70 does not properly handle CBF_SMBITMAP objects in a ViewHostMsg_ClipboardWriteObjectsAsync message, which might allow remote attackers to execute a...
- EPSS 8.92%
- Veröffentlicht 15.06.2010 18:00:02
- Zuletzt bearbeitet 16.06.2026 23:20:29
Use-after-free vulnerability in the Element::normalizeAttributes function in dom/Element.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) vi...
CVE-2010-2301
- EPSS 1.29%
- Veröffentlicht 15.06.2010 18:00:02
- Zuletzt bearbeitet 16.06.2026 23:20:30
Cross-site scripting (XSS) vulnerability in editing/markup.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to inject arbitrary web script or HTML via vectors related to the node.innerHTML property of a TEXTAREA ele...