Google: >> Chrome >> 10.0.648.128 Security Vulnerabilities
Integer overflow in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code in a PDF document.
CVSS Score
6.8
EPSS Score
0.005
Published
2013-01-15
Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving seek operations on video data.
CVSS Score
5.0
EPSS Score
0.007
Published
2013-01-15
Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.52, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers an out-of-bounds access to stack memory.
CVSS Score
7.5
EPSS Score
0.007
Published
2013-01-15
Integer overflow in Google Chrome before 24.0.1312.52 on Windows allows attackers to cause a denial of service or possibly have unspecified other impact via vectors related to allocation of shared memory.
CVSS Score
7.5
EPSS Score
0.002
Published
2013-01-15
Google Chrome before 24.0.1312.52 on Mac OS X does not use an appropriate sandboxing approach for worker processes, which makes it easier for remote attackers to bypass intended access restrictions via unspecified vectors.
CVSS Score
5.0
EPSS Score
0.001
Published
2013-01-15
Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving PDF fields.
CVSS Score
6.8
EPSS Score
0.006
Published
2013-01-15
Google Chrome before 24.0.1312.52 does not properly handle image data in PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted document.
CVSS Score
4.3
EPSS Score
0.008
Published
2013-01-15
The PDF functionality in Google Chrome before 24.0.1312.52 does not properly perform a cast of an unspecified variable during processing of the root of the structure tree, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document.
CVSS Score
6.8
EPSS Score
0.006
Published
2013-01-15
Google Chrome before 24.0.1312.52 does not properly maintain database metadata, which allows remote attackers to bypass intended file-access restrictions via unspecified vectors.
CVSS Score
6.4
EPSS Score
0.002
Published
2013-01-15
The IPC layer in Google Chrome before 24.0.1312.52 on Windows omits a NUL character required for termination of an unspecified data structure, which has unknown impact and attack vectors.
CVSS Score
7.5
EPSS Score
0.002
Published
2013-01-15