|
272401
|
- |
|
google
debian
|
chrome
debian_linux
|
Cross-site scripting (XSS) vulnerability in Google Chrome before 43.0.2357.65 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted data that is improperly handled …
|
CWE-79
Cross-site Scripting
|
CVE-2015-1264
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272402
|
- |
|
google
debian
|
chrome
debian_linux
|
The Spellcheck API implementation in Google Chrome before 43.0.2357.65 does not use an HTTPS session for downloading a Hunspell dictionary, which allows man-in-the-middle attackers to deliver incorre…
|
CWE-17
Code
|
CVE-2015-1263
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272403
|
- |
|
google
debian
|
chrome
debian_linux
|
platform/fonts/shaping/HarfBuzzShaper.cpp in Blink, as used in Google Chrome before 43.0.2357.65, does not initialize a certain width field, which allows remote attackers to cause a denial of service…
|
CWE-17
Code
|
CVE-2015-1262
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272404
|
- |
|
debian
google
|
debian_linux
chrome
|
android/java/src/org/chromium/chrome/browser/WebsiteSettingsPopup.java in Google Chrome before 43.0.2357.65 on Android does not properly restrict use of a URL's fragment identifier during constructio…
|
CWE-20
Improper Input Validation
|
CVE-2015-1261
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272405
|
- |
|
debian
google
|
debian_linux
chrome
|
Multiple use-after-free vulnerabilities in content/renderer/media/user_media_client_impl.cc in the WebRTC implementation in Google Chrome before 43.0.2357.65 allow remote attackers to cause a denial …
|
NVD-CWE-Other
|
CVE-2015-1260
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272406
|
- |
|
debian
google
|
debian_linux
chrome
|
PDFium, as used in Google Chrome before 43.0.2357.65, does not properly initialize memory, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unk…
|
CWE-17
Code
|
CVE-2015-1259
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272407
|
- |
|
debian
google
|
debian_linux
chrome
|
Google Chrome before 43.0.2357.65 relies on libvpx code that was not built with an appropriate --size-limit value, which allows remote attackers to trigger a negative value for a size field, and cons…
|
CWE-189
Numeric Errors
|
CVE-2015-1258
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272408
|
- |
|
debian
google
|
debian_linux
chrome
|
platform/graphics/filters/FEColorMatrix.cpp in the SVG implementation in Blink, as used in Google Chrome before 43.0.2357.65, does not properly handle an insufficient number of values in an feColorMa…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1257
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272409
|
- |
|
debian
google
|
debian_linux
chrome
|
Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before 43.0.2357.65, allows remote attackers to cause a denial of service or possibly have unspecified other …
|
NVD-CWE-Other
|
CVE-2015-1256
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272410
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1718
|
2024-11-21 11:25 |
2015-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
