This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:google:chrome:4.1.249.1027 |
| Detail | |||
|---|---|---|---|
| Vendor | First view | 2010-04-01 | |
| Product | Chrome | Last view | 2012-05-01 |
| Version | 4.1.249.1027 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:google:chrome | ||
Activity : Yearly
Related : CVE
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 10 | 2012-05-01 | CVE-2012-1521 | Network | Low | None Requ... | |
| 10 | 2012-05-01 | CVE-2011-3081 | Network | Low | None Requ... | |
| 7.5 | 2012-05-01 | CVE-2011-3080 | Network | Low | None Requ... | |
| 10 | 2012-05-01 | CVE-2011-3079 | Network | Low | None Requ... | |
| 10 | 2012-05-01 | CVE-2011-3078 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 10 | 2012-04-06 | CVE-2012-0725 | Network | Low | None Requ... | |
| 10 | 2012-04-06 | CVE-2012-0724 | Network | Low | None Requ... | |
| 7.5 | 2012-04-05 | CVE-2011-3077 | Network | Low | None Requ... | |
| 7.5 | 2012-04-05 | CVE-2011-3076 | Network | Low | None Requ... | |
| 7.5 | 2012-04-05 | CVE-2011-3075 | Network | Low | None Requ... | |
| 7.5 | 2012-04-05 | CVE-2011-3074 | Network | Low | None Requ... | |
| 7.5 | 2012-04-05 | CVE-2011-3073 | Network | Low | None Requ... | |
| 5 | 2012-04-05 | CVE-2011-3072 | Network | Low | None Requ... | |
| 7.5 | 2012-04-05 | CVE-2011-3071 | Network | Low | None Requ... | |
| 7.5 | 2012-04-05 | CVE-2011-3070 | Network | Low | None Requ... | |
| 7.5 | 2012-04-05 | CVE-2011-3069 | Network | Low | None Requ... | |
| 7.5 | 2012-04-05 | CVE-2011-3068 | Network | Low | None Requ... | |
| 5 | 2012-04-05 | CVE-2011-3067 | Network | Low | None Requ... | |
| 5 | 2012-04-05 | CVE-2011-3066 | Network | Low | None Requ... | |
| 7.5 | 2012-03-30 | CVE-2011-3065 | Network | Low | None Requ... | |
| 7.5 | 2012-03-30 | CVE-2011-3064 | Network | Low | None Requ... | |
| 10 | 2012-03-30 | CVE-2011-3063 | Network | Low | None Requ... | |
| 6.8 | 2012-03-30 | CVE-2011-3062 | Network | Medium | None Requ... | |
| 5.8 | 2012-03-30 | CVE-2011-3061 | Network | Medium | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 30% (125) | CWE-399 | Resource Management Errors |
| 23% (97) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 23% (97) | CWE-20 | Improper Input Validation |
| 10% (42) | CWE-264 | Permissions, Privileges, and Access Controls |
| 3% (16) | CWE-189 | Numeric Errors |
| % | id | Name |
|---|---|---|
| 2% (9) | CWE-362 | Race Condition |
| 2% (9) | CWE-200 | Information Exposure |
| 1% (6) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 0% (3) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 0% (2) | CWE-310 | Cryptographic Issues |
| 0% (2) | CWE-287 | Improper Authentication |
| 0% (1) | CWE-352 | Cross-Site Request Forgery (CSRF) |
Oval Markup Language : Definitions
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:13829 | Multiple race conditions in the sandbox infrastructure in Google Chrome befor... |
| oval:org.mitre.oval:def:14220 | The sandbox infrastructure in Google Chrome before 4.1.249.1036 does not prop... |
| oval:org.mitre.oval:def:14292 | Google Chrome before 4.1.249.1036 does not have the expected behavior for att... |
| oval:org.mitre.oval:def:14332 | Google Chrome before 4.1.249.1036 processes HTTP headers before invoking the ... |
| oval:org.mitre.oval:def:14000 | Google Chrome before 4.1.249.1036 allows remote attackers to cause a denial o... |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:14275 | Unspecified vulnerability in Google Chrome before 4.1.249.1036 allows remote ... |
| oval:org.mitre.oval:def:14297 | Unspecified vulnerability in Google Chrome before 4.1.249.1036 allows remote ... |
| oval:org.mitre.oval:def:14067 | The protocolIs function in platform/KURLGoogle.cpp in WebCore in WebKit befor... |
| oval:org.mitre.oval:def:14374 | Google Chrome 4.1 BETA before 4.1.249.1036 allows remote attackers to cause a... |
| oval:org.mitre.oval:def:11906 | Type confusion error in Google Chrome version before 4.1.249.1059. |
| oval:org.mitre.oval:def:12041 | Developer tools vulnerability in Google Chrome version before 4.1.249.1059. |
| oval:org.mitre.oval:def:11244 | Cross-site scripting (XSS) vulnerability related to chrome://net-internals [^... |
| oval:org.mitre.oval:def:11418 | Cross-site scripting (XSS) vulnerability allows remote attackers in Google Ch... |
| oval:org.mitre.oval:def:11866 | Prevent pages from loading with the New Tab page's privileges in Google Chrom... |
| oval:org.mitre.oval:def:11925 | Denial of service found in Google Chrome version before 4.1.249.1059 |
| oval:org.mitre.oval:def:6813 | Allows remote attackers to bypass the Origin Policy in Google Chrome version... |
| oval:org.mitre.oval:def:6878 | Problem in handling HTML5 media in Google Chrome version less than 4.1.249.1064 |
| oval:org.mitre.oval:def:7034 | Problem in handling fonts in Google Chrome version less than 4.1.249.1064 |
| oval:org.mitre.oval:def:11140 | Cross-site request forgery in Google Chrome version before 4.1.249.1059. |
| oval:org.mitre.oval:def:7099 | WebKit IBM1147 Character Set Text Transform Remote Code Execution Vulnerability |
| oval:org.mitre.oval:def:11661 | Vulnerability in page/Geolocation.cpp in WebCore in WebKit in Google Chrome ... |
| oval:org.mitre.oval:def:11830 | Vulnerability in toAlphabetic function in rendering/RenderListMarker.cpp in W... |
| oval:org.mitre.oval:def:6691 | Google Chrome WebKit Variable Casting Weakness Malformed SVG Document Handlin... |
| oval:org.mitre.oval:def:7405 | Vulnerability in WebKit used in Google Chrome version less than 6.0.472.59 vi... |
| oval:org.mitre.oval:def:7151 | Vulnerability in WebKit used in Google Chrome version less than 6.0.472.59 vi... |
Open Source Vulnerability Database (OSVDB)
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 78547 | Google Chrome Tree Builder Remote Overflow |
| 78546 | Google Chrome Skia Unitialized Value Unspecified Remote DoS |
| 78545 | Google Chrome Use-after-free DOM Handling Unspecified Remote DoS |
| 78544 | Google Chrome Use-after-free DOM Selections Unspecified Remote DoS |
| 78543 | Google Chrome Use-after-free Safe Browsing Navigation Memory Corruption |
| id | Description |
|---|---|
| 78150 | Google Chrome Glyph Handling Remote Overflow |
| 78149 | Google Chrome Use-after-free Animation Frame Handling Remote Code Execution |
| 78148 | Google Chrome libxml2 parser.c xmlStringLenDecodeEntities() Function Remote O... |
| 77720 | Google Chrome bidi Handling Use-after-free Remote Code Execution |
| 77719 | Google Chrome Filewatcher Unspecified Remote Overflow |
| 77718 | Google Chrome PDF Cross References Out-of-bounds Read Remote DoS |
| 77717 | Google Chrome PDF Font Handling Remote Overflow |
| 77716 | Google Chrome v8 i18n Handling Out-of-bounds Write Remote Code Execution |
| 77715 | Google Chrome Range Handling Use-after-free Remote Code Execution |
| 77714 | Google Chrome SVG Filters Use-after-free Remote Code Execution |
| 77713 | Google Chrome PDF Handling Out-of-bounds Read Remote DoS |
| 77712 | Google Chrome YUV Video Frames Out-of-bounds Read Remote DoS |
| 77711 | Google Chrome CSS Property Array Unspecified Remote Memory Corruption |
| 77710 | Google Chrome SVG Parsing Out-of-bounds Read Remote DoS |
| 77709 | Google Chrome view-source URL Bar Spoofing |
| 77708 | Google Chrome PDF Parser Out-of-bounds Read Remote DoS |
| 77707 | Google Chrome libxml Out-of-bounds Read Remote DoS |
| 77706 | Google Chrome regex Matching Out-of-bounds Read Remote DoS |
| 77608 | Google Chrome JavaScript Implementation getComputedStyle Method Page Handling... |
| 77604 | Google Chrome CSS visited Pseudo-class Handling Browsing History Disclosure |
ExploitDB Exploits
| id | Description |
|---|---|
| 22406 | Konqueror 4.7.3 Memory Corruption |
| 17929 | Google Chrome < 14.0.835.163 PDF File Handling Memory Corruption |
| 12657 | Google Chrome 4.1.249.1059 Cross Origin Bypass in Google URL (GURL) |
