This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:google:chrome:4.1.249.1027
Detail
VendorGoogleFirst view 2010-04-01
ProductChromeLast view 2012-05-01
Version4.1.249.1027TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:google:chrome

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
102012-05-01CVE-2012-1521NetworkLowNone Requ...
102012-05-01CVE-2011-3081NetworkLowNone Requ...
7.52012-05-01CVE-2011-3080NetworkLowNone Requ...
102012-05-01CVE-2011-3079NetworkLowNone Requ...
102012-05-01CVE-2011-3078NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
102012-04-06CVE-2012-0725NetworkLowNone Requ...
102012-04-06CVE-2012-0724NetworkLowNone Requ...
7.52012-04-05CVE-2011-3077NetworkLowNone Requ...
7.52012-04-05CVE-2011-3076NetworkLowNone Requ...
7.52012-04-05CVE-2011-3075NetworkLowNone Requ...
7.52012-04-05CVE-2011-3074NetworkLowNone Requ...
7.52012-04-05CVE-2011-3073NetworkLowNone Requ...
52012-04-05CVE-2011-3072NetworkLowNone Requ...
7.52012-04-05CVE-2011-3071NetworkLowNone Requ...
7.52012-04-05CVE-2011-3070NetworkLowNone Requ...
7.52012-04-05CVE-2011-3069NetworkLowNone Requ...
7.52012-04-05CVE-2011-3068NetworkLowNone Requ...
52012-04-05CVE-2011-3067NetworkLowNone Requ...
52012-04-05CVE-2011-3066NetworkLowNone Requ...
7.52012-03-30CVE-2011-3065NetworkLowNone Requ...
7.52012-03-30CVE-2011-3064NetworkLowNone Requ...
102012-03-30CVE-2011-3063NetworkLowNone Requ...
6.82012-03-30CVE-2011-3062NetworkMediumNone Requ...
5.82012-03-30CVE-2011-3061NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
30% (125)CWE-399Resource Management Errors
23% (97)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
23% (97)CWE-20Improper Input Validation
10% (42)CWE-264Permissions, Privileges, and Access Controls
3% (16)CWE-189Numeric Errors
Hide | Show 7 More...
%idName
2% (9)CWE-362Race Condition
2% (9)CWE-200Information Exposure
1% (6)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
0% (3)CWE-94Failure to Control Generation of Code ('Code Injection')
0% (2)CWE-310Cryptographic Issues
0% (2)CWE-287Improper Authentication
0% (1)CWE-352Cross-Site Request Forgery (CSRF)

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:13829Multiple race conditions in the sandbox infrastructure in Google Chrome befor...
oval:org.mitre.oval:def:14220The sandbox infrastructure in Google Chrome before 4.1.249.1036 does not prop...
oval:org.mitre.oval:def:14292Google Chrome before 4.1.249.1036 does not have the expected behavior for att...
oval:org.mitre.oval:def:14332Google Chrome before 4.1.249.1036 processes HTTP headers before invoking the ...
oval:org.mitre.oval:def:14000Google Chrome before 4.1.249.1036 allows remote attackers to cause a denial o...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:14275Unspecified vulnerability in Google Chrome before 4.1.249.1036 allows remote ...
oval:org.mitre.oval:def:14297Unspecified vulnerability in Google Chrome before 4.1.249.1036 allows remote ...
oval:org.mitre.oval:def:14067The protocolIs function in platform/KURLGoogle.cpp in WebCore in WebKit befor...
oval:org.mitre.oval:def:14374Google Chrome 4.1 BETA before 4.1.249.1036 allows remote attackers to cause a...
oval:org.mitre.oval:def:11906Type confusion error in Google Chrome version before 4.1.249.1059.
oval:org.mitre.oval:def:12041Developer tools vulnerability in Google Chrome version before 4.1.249.1059.
oval:org.mitre.oval:def:11244Cross-site scripting (XSS) vulnerability related to chrome://net-internals [^...
oval:org.mitre.oval:def:11418Cross-site scripting (XSS) vulnerability allows remote attackers in Google Ch...
oval:org.mitre.oval:def:11866Prevent pages from loading with the New Tab page's privileges in Google Chrom...
oval:org.mitre.oval:def:11925Denial of service found in Google Chrome version before 4.1.249.1059
oval:org.mitre.oval:def:6813Allows remote attackers to bypass the Origin Policy in Google Chrome version...
oval:org.mitre.oval:def:6878Problem in handling HTML5 media in Google Chrome version less than 4.1.249.1064
oval:org.mitre.oval:def:7034Problem in handling fonts in Google Chrome version less than 4.1.249.1064
oval:org.mitre.oval:def:11140Cross-site request forgery in Google Chrome version before 4.1.249.1059.
oval:org.mitre.oval:def:7099WebKit IBM1147 Character Set Text Transform Remote Code Execution Vulnerability
oval:org.mitre.oval:def:11661Vulnerability in page/Geolocation.cpp in WebCore in WebKit in Google Chrome ...
oval:org.mitre.oval:def:11830Vulnerability in toAlphabetic function in rendering/RenderListMarker.cpp in W...
oval:org.mitre.oval:def:6691Google Chrome WebKit Variable Casting Weakness Malformed SVG Document Handlin...
oval:org.mitre.oval:def:7405Vulnerability in WebKit used in Google Chrome version less than 6.0.472.59 vi...
oval:org.mitre.oval:def:7151Vulnerability in WebKit used in Google Chrome version less than 6.0.472.59 vi...

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
78547Google Chrome Tree Builder Remote Overflow
78546Google Chrome Skia Unitialized Value Unspecified Remote DoS
78545Google Chrome Use-after-free DOM Handling Unspecified Remote DoS
78544Google Chrome Use-after-free DOM Selections Unspecified Remote DoS
78543Google Chrome Use-after-free Safe Browsing Navigation Memory Corruption
Hide | Show 20 More...
idDescription
78150Google Chrome Glyph Handling Remote Overflow
78149Google Chrome Use-after-free Animation Frame Handling Remote Code Execution
78148Google Chrome libxml2 parser.c xmlStringLenDecodeEntities() Function Remote O...
77720Google Chrome bidi Handling Use-after-free Remote Code Execution
77719Google Chrome Filewatcher Unspecified Remote Overflow
77718Google Chrome PDF Cross References Out-of-bounds Read Remote DoS
77717Google Chrome PDF Font Handling Remote Overflow
77716Google Chrome v8 i18n Handling Out-of-bounds Write Remote Code Execution
77715Google Chrome Range Handling Use-after-free Remote Code Execution
77714Google Chrome SVG Filters Use-after-free Remote Code Execution
77713Google Chrome PDF Handling Out-of-bounds Read Remote DoS
77712Google Chrome YUV Video Frames Out-of-bounds Read Remote DoS
77711Google Chrome CSS Property Array Unspecified Remote Memory Corruption
77710Google Chrome SVG Parsing Out-of-bounds Read Remote DoS
77709Google Chrome view-source URL Bar Spoofing
77708Google Chrome PDF Parser Out-of-bounds Read Remote DoS
77707Google Chrome libxml Out-of-bounds Read Remote DoS
77706Google Chrome regex Matching Out-of-bounds Read Remote DoS
77608Google Chrome JavaScript Implementation getComputedStyle Method Page Handling...
77604Google Chrome CSS visited Pseudo-class Handling Browsing History Disclosure

ExploitDB Exploits

idDescription
22406Konqueror 4.7.3 Memory Corruption
17929Google Chrome < 14.0.835.163 PDF File Handling Memory Corruption
12657Google Chrome 4.1.249.1059 Cross Origin Bypass in Google URL (GURL)

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-18Name : Debian Security Advisory DSA 2439-1 (libpng - buffer overflow
File : nvt/deb_2439_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2471-1 (ffmpeg - several vulnerabilities
File : nvt/deb_2471_1.nasl
2012-12-26Name : Fedora Update for qt FEDORA-2012-19715
File : nvt/gb_fedora_2012_19715_qt_fc16.nasl
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0374-1 (update)
File : nvt/gb_suse_2012_0374_1.nasl
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0466-1 (update)
File : nvt/gb_suse_2012_0466_1.nasl
Hide | Show 20 More...
idDescription
2012-10-26Name : Ubuntu Update for webkit USN-1617-1
File : nvt/gb_ubuntu_USN_1617_1.nasl
2012-10-19Name : Fedora Update for qt FEDORA-2012-15203
File : nvt/gb_fedora_2012_15203_qt_fc16.nasl
2012-10-12Name : Mandriva Update for libxslt MDVSA-2012:164 (libxslt)
File : nvt/gb_mandriva_MDVSA_2012_164.nasl
2012-10-05Name : Ubuntu Update for libxslt USN-1595-1
File : nvt/gb_ubuntu_USN_1595_1.nasl
2012-10-03Name : Fedora Update for libxml2 FEDORA-2012-13824
File : nvt/gb_fedora_2012_13824_libxml2_fc16.nasl
2012-10-03Name : Fedora Update for libxslt FEDORA-2012-14048
File : nvt/gb_fedora_2012_14048_libxslt_fc16.nasl
2012-09-27Name : Fedora Update for libxml2 FEDORA-2012-13820
File : nvt/gb_fedora_2012_13820_libxml2_fc17.nasl
2012-09-27Name : Fedora Update for libxslt FEDORA-2012-14083
File : nvt/gb_fedora_2012_14083_libxslt_fc17.nasl
2012-09-25Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2012-004)
File : nvt/gb_macosx_su12-004.nasl
2012-09-17Name : RedHat Update for libxslt RHSA-2012:1265-01
File : nvt/gb_RHSA-2012_1265-01_libxslt.nasl
2012-09-17Name : CentOS Update for libxslt CESA-2012:1265 centos5
File : nvt/gb_CESA-2012_1265_libxslt_centos5.nasl
2012-09-17Name : CentOS Update for libxslt CESA-2012:1265 centos6
File : nvt/gb_CESA-2012_1265_libxslt_centos6.nasl
2012-09-17Name : Apple iTunes Multiple Vulnerabilities - Sep 12 (Windows)
File : nvt/gb_apple_itunes_mult_vuln_sep12_win.nasl
2012-09-10Name : Slackware Advisory SSA:2012-206-01 libpng
File : nvt/esoft_slk_ssa_2012_206_01.nasl
2012-08-30Name : Fedora Update for libpng10 FEDORA-2012-3507
File : nvt/gb_fedora_2012_3507_libpng10_fc17.nasl
2012-08-30Name : Fedora Update for libpng FEDORA-2012-3605
File : nvt/gb_fedora_2012_3605_libpng_fc17.nasl
2012-08-30Name : Fedora Update for thunderbird FEDORA-2012-4910
File : nvt/gb_fedora_2012_4910_thunderbird_fc17.nasl
2012-08-30Name : Fedora Update for thunderbird FEDORA-2012-1794
File : nvt/gb_fedora_2012_1794_thunderbird_fc17.nasl
2012-08-30Name : Fedora Update for xulrunner FEDORA-2012-1800
File : nvt/gb_fedora_2012_1800_xulrunner_fc17.nasl
2012-08-30Name : Fedora Update for libpng FEDORA-2012-1892
File : nvt/gb_fedora_2012_1892_libpng_fc17.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2013-A-0031Multiple Security Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity : Category I - VMSKEY : V0036787
2012-A-0153Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0033884
2012-A-0073Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0032171

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2014-03-15Google Chrome and Apple Safari CSS float use-after-free attempt
RuleID : 29812 - Type : BROWSER-WEBKIT - Revision : 2
2014-03-15Google Chrome and Apple Safari CSS float use-after-free attempt
RuleID : 29811 - Type : BROWSER-WEBKIT - Revision : 2
2014-03-15Google Chrome and Apple Safari CSS float use-after-free attempt
RuleID : 29810 - Type : BROWSER-WEBKIT - Revision : 2
2014-03-15Google Chrome and Apple Safari CSS float use-after-free attempt
RuleID : 29809 - Type : BROWSER-WEBKIT - Revision : 2
2014-03-15Google Chrome and Apple Safari Ruby before and after memory corruption
RuleID : 29755 - Type : BROWSER-CHROME - Revision : 1
Hide | Show 20 More...
DateDescription
2014-01-10libpng chunk decompression integer overflow attempt
RuleID : 25066 - Type : FILE-IMAGE - Revision : 3
2014-01-10libpng chunk decompression integer overflow attempt
RuleID : 25065 - Type : FILE-IMAGE - Revision : 4
2014-01-10Google Chrome net-internals uri fragment identifier XSS attempt
RuleID : 23471 - Type : BROWSER-CHROME - Revision : 5
2014-01-10Google Chrome and Apple Safari runin handling use after free attempt
RuleID : 23015 - Type : BROWSER-CHROME - Revision : 4
2014-01-10libpng chunk decompression integer overflow attempt
RuleID : 22109 - Type : FILE-IMAGE - Revision : 6
2014-01-10libpng chunk decompression integer overflow attempt
RuleID : 22108 - Type : FILE-IMAGE - Revision : 6
2014-01-10libpng chunk decompression integer overflow attempt
RuleID : 22107 - Type : FILE-IMAGE - Revision : 6
2014-01-10libpng chunk decompression integer overflow attempt
RuleID : 22106 - Type : FILE-IMAGE - Revision : 7
2014-01-10libpng chunk decompression integer overflow attempt
RuleID : 22105 - Type : FILE-IMAGE - Revision : 8
2014-01-10libpng chunk decompression integer overflow attempt
RuleID : 22104 - Type : FILE-IMAGE - Revision : 7
2014-01-10libpng png_inflate buffer overflow attempt
RuleID : 21990 - Type : FILE-IMAGE - Revision : 4
2014-01-10libpng png_inflate buffer overflow attempt
RuleID : 21989 - Type : FILE-IMAGE - Revision : 4
2014-01-10libpng png_inflate buffer overflow attempt
RuleID : 21988 - Type : FILE-IMAGE - Revision : 4
2014-01-10libpng png_inflate buffer overflow attempt
RuleID : 21987 - Type : FILE-IMAGE - Revision : 4
2014-01-10libpng png_inflate buffer overflow attempt
RuleID : 21986 - Type : FILE-IMAGE - Revision : 4
2014-01-10libpng png_inflate buffer overflow attempt
RuleID : 21985 - Type : FILE-IMAGE - Revision : 4
2014-01-10Apple Webkit Display box rendering corruption attempt
RuleID : 20997 - Type : BROWSER-WEBKIT - Revision : 8
2014-01-10Google Chrome and Apple Safari Ruby before and after memory corruption
RuleID : 20579 - Type : BROWSER-CHROME - Revision : 4
2014-01-10Google Chrome float rendering corruption attempt
RuleID : 19710 - Type : BROWSER-CHROME - Revision : 6
2014-01-10Google Chrome Uninitialized bug_report Pointer Code Execution
RuleID : 19217 - Type : BROWSER-CHROME - Revision : 9

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-11-13Name : The remote VMware ESXi 5.0 host is affected by multiple security vulnerabilit...
File : vmware_esxi_5_0_build_764879_remote.nasl - Type : ACT_GATHER_INFO
2013-11-13Name : The remote VMware ESXi 5.1 host is affected by multiple security vulnerabilit...
File : vmware_esxi_5_1_build_1063671_remote.nasl - Type : ACT_GATHER_INFO
2013-11-12Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_libxslt-131106.nasl - Type : ACT_GATHER_INFO
2013-10-27Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201310-12.nasl - Type : ACT_GATHER_INFO
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2012-123.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2012-36.nasl - Type : ACT_GATHER_INFO
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2012-49.nasl - Type : ACT_GATHER_INFO
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2012-56.nasl - Type : ACT_GATHER_INFO
2013-08-21Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_4d087b35099011e3a9f4bcaec565249c.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0317.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0407.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-0471.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0515.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2012-0516.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0880.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-1265.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0999.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0016.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0017.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0018.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-0177.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2012-0140.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0141.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2012-0142.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0143.nasl - Type : ACT_GATHER_INFO