|
297551
|
- |
|
google
|
chrome
|
Google Chrome before 13.0.782.107 does not properly address re-entrancy issues associated with the GPU lock, which allows remote attackers to cause a denial of service (application crash) via unspeci…
|
CWE-20
Improper Input Validation
|
CVE-2011-2787
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297552
|
- |
|
google
|
chrome
|
Google Chrome before 13.0.782.107 does not ensure that the speech-input bubble is shown on the product's screen, which might make it easier for remote attackers to make audio recordings via a crafted…
|
CWE-20
Improper Input Validation
|
CVE-2011-2786
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297553
|
- |
|
google
|
chrome
|
The extensions implementation in Google Chrome before 13.0.782.107 does not properly validate the URL for the home page, which allows remote attackers to have an unspecified impact via a crafted exte…
|
CWE-20
Improper Input Validation
|
CVE-2011-2785
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297554
|
- |
|
google
|
chrome
|
Google Chrome before 13.0.782.107 allows remote attackers to obtain sensitive information via a request for the GL program log, which reveals a local path in an unspecified log entry.
|
CWE-200
Information Exposure
|
CVE-2011-2784
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297555
|
- |
|
google
|
chrome
|
Google Chrome before 13.0.782.107 does not ensure that developer-mode NPAPI extension installations are confirmed by a browser dialog, which makes it easier for remote attackers to modify the product…
|
CWE-20
Improper Input Validation
|
CVE-2011-2783
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297556
|
- |
|
google
|
chrome
|
The drag-and-drop implementation in Google Chrome before 13.0.782.107 on Linux does not properly enforce permissions for files, which allows user-assisted remote attackers to bypass intended access r…
|
CWE-276
Incorrect Default Permissions
|
CVE-2011-2782
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297557
|
- |
|
lars_hjemli
|
cgit
|
Cross-site scripting (XSS) vulnerability in the print_fileinfo function in ui-diff.c in cgit 0.9.0.2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the filen…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2711
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297558
|
- |
|
google
|
chrome
|
The Basic Authentication dialog implementation in Google Chrome before 13.0.782.107 does not properly handle strings, which might make it easier for remote attackers to capture credentials via a craf…
|
CWE-287
Improper Authentication
|
CVE-2011-2361
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297559
|
- |
|
google
|
chrome
|
Google Chrome before 13.0.782.107 does not ensure that the user is prompted before download of a dangerous file, which makes it easier for remote attackers to bypass intended content restrictions via…
|
NVD-CWE-noinfo
|
CVE-2011-2360
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297560
|
- |
|
google
apple
debian
|
chrome
iphone_os
itunes
safari
debian_linux
|
Google Chrome before 13.0.782.107 does not properly track line boxes during rendering, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown…
|
CWE-20
Improper Input Validation
|
CVE-2011-2359
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
