Executive Summary
Summary | |
---|---|
Title | webkit security update |
Informations | |||
---|---|---|---|
Name | DSA-2188 | First vendor Publication | 2011-03-10 |
Vendor | Debian | Last vendor Modification | 2011-03-10 |
Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Several vulnerabilities have been discovered in webkit, a Web content engine library for Gtk+. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2010-1783 WebKit does not properly handle dynamic modification of a text node, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. CVE-2010-2901 The rendering implementation in WebKit allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. CVE-2010-4199 WebKit does not properly perform a cast of an unspecified variable during processing of an SVG use element, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted SVG document. CVE-2010-4040 WebKit does not properly handle animated GIF images, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted image. CVE-2010-4492 Use-after-free vulnerability in WebKit allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG animations. CVE-2010-4493 Use-after-free vulnerability in Webkit allows remote attackers to cause a denial of service via vectors related to the handling of mouse dragging events CVE-2010-4577 The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." CVE-2010-4578 WebKit does not properly perform cursor handling, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "stale pointers." CVE-2011-0482 WebKit does not properly perform a cast of an unspecified variable during handling of anchors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted HTML document CVE-2011-0778 WebKit does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors. For the stable distribution (squeeze), these problems have been fixed in version 1.2.7-0+squeeze1 For the testing distribution (wheezy), and the unstable distribution (sid), these problems have been fixed in version 1.2.7-1 Security support for WebKit has been discontinued for the oldstable distribution (lenny). The current version in oldstable is not supported by upstream anymore and is affected by several security issues. Backporting fixes for these and any future issues has become unfeasible and therefore we need to drop our security support for the version in oldstable. We recommend that you upgrade your webkit packages. |
Original Source
Url : http://www.debian.org/security/2011/dsa-2188 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
22 % | CWE-416 | Use After Free |
22 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
22 % | CWE-20 | Improper Input Validation |
11 % | CWE-704 | Incorrect Type Conversion or Cast |
11 % | CWE-264 | Permissions, Privileges, and Access Controls |
11 % | CWE-125 | Out-of-bounds Read |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:11429 | |||
Oval ID: | oval:org.mitre.oval:def:11429 | ||
Title: | Vulnerability in Google Chrome before 7.0.517.44 via a crafted SVG document | ||
Description: | Google Chrome before 7.0.517.44 does not properly perform a cast of an unspecified variable during processing of an SVG use element, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted SVG document. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-4199 | Version: | 13 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Google Chrome |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:11475 | |||
Oval ID: | oval:org.mitre.oval:def:11475 | ||
Title: | Use-after-free vulnerability in Google Chrome before 8.0.552.215 via vectors involving SVG animations | ||
Description: | Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG animations. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-4492 | Version: | 14 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Google Chrome |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:11820 | |||
Oval ID: | oval:org.mitre.oval:def:11820 | ||
Title: | WebKit in Apple Safari before 5.0.1 Denial of Service vulnerability | ||
Description: | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; does not properly handle dynamic modification of a text node, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-1783 | Version: | 13 |
Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11997 | |||
Oval ID: | oval:org.mitre.oval:def:11997 | ||
Title: | Vulnerability in rendering implementation in Google Chrome before 5.0.375.125 | ||
Description: | The rendering implementation in Google Chrome before 5.0.375.125 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2901 | Version: | 13 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Google Chrome |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:12129 | |||
Oval ID: | oval:org.mitre.oval:def:12129 | ||
Title: | Use-after-free vulnerability in Google Chrome before 8.0.552.215 | ||
Description: | Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers to cause a denial of service via vectors related to the handling of mouse dragging events. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-4493 | Version: | 14 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Google Chrome |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:12384 | |||
Oval ID: | oval:org.mitre.oval:def:12384 | ||
Title: | DSA-2188-1 webkit -- several | ||
Description: | Several vulnerabilities have been discovered in webkit, a Web content engine library for Gtk+. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2010-1783 WebKit does not properly handle dynamic modification of a text node, which allows remote attackers to execute arbitrary code or cause a denial of service via a crafted HTML document. CVE-2010-2901 The rendering implementation in WebKit allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. CVE-2010-4199 WebKit does not properly perform a cast of an unspecified variable during processing of an SVG use element, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted SVG document. CVE-2010-4040 WebKit does not properly handle animated GIF images, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image. CVE-2010-4492 Use-after-free vulnerability in WebKit allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG animations. CVE-2010-4493 Use-after-free vulnerability in Webkit allows remote attackers to cause a denial of service via vectors related to the handling of mouse dragging events CVE-2010-4577 The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit does not properly parse Cascading Style Sheets token sequences, which allows remote attackers to cause a denial of service via a crafted local font, related to "Type Confusion." CVE-2010-4578 WebKit does not properly perform cursor handling, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "stale pointers." CVE-2011-0482 WebKit does not properly perform a cast of an unspecified variable during handling of anchors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted HTML document CVE-2011-0778 WebKit does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors. | ||
Family: | unix | Class: | patch |
Reference(s): | DSA-2188-1 CVE-2010-1783 CVE-2010-2901 CVE-2010-4199 CVE-2010-4040 CVE-2010-4492 CVE-2010-4493 CVE-2010-4577 CVE-2010-4578 CVE-2010-0474 CVE-2011-0482 CVE-2011-0778 | Version: | 5 |
Platform(s): | Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0 | Product(s): | webkit |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:13953 | |||
Oval ID: | oval:org.mitre.oval:def:13953 | ||
Title: | The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." | ||
Description: | The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-4577 | Version: | 15 |
Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Google Chrome |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:14173 | |||
Oval ID: | oval:org.mitre.oval:def:14173 | ||
Title: | USN-1195-1 -- webkit vulnerabilities | ||
Description: | webkit: Web content engine library for GTK+ Multiple security vulnerabilities were fixed in WebKit. | ||
Family: | unix | Class: | patch |
Reference(s): | USN-1195-1 CVE-2010-1824 CVE-2010-2646 CVE-2010-2651 CVE-2010-2900 CVE-2010-2901 CVE-2010-3120 CVE-2010-3254 CVE-2010-3812 CVE-2010-3813 CVE-2010-4040 CVE-2010-4042 CVE-2010-4197 CVE-2010-4198 CVE-2010-4199 CVE-2010-4204 CVE-2010-4206 CVE-2010-4492 CVE-2010-4493 CVE-2010-4577 CVE-2010-4578 CVE-2011-0482 CVE-2011-0778 | Version: | 5 |
Platform(s): | Ubuntu 10.10 Ubuntu 10.04 | Product(s): | webkit |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:14228 | |||
Oval ID: | oval:org.mitre.oval:def:14228 | ||
Title: | Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors. | ||
Description: | Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2011-0778 | Version: | 15 |
Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Google Chrome |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:14323 | |||
Oval ID: | oval:org.mitre.oval:def:14323 | ||
Title: | Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 do not properly perform cursor handling, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "stale pointers." | ||
Description: | Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 do not properly perform cursor handling, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "stale pointers." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-4578 | Version: | 15 |
Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Google Chrome |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:14443 | |||
Oval ID: | oval:org.mitre.oval:def:14443 | ||
Title: | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets (CSS) token sequences in conjunction with cursors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." | ||
Description: | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets (CSS) token sequences in conjunction with cursors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2011-0474 | Version: | 15 |
Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Google Chrome |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:14662 | |||
Oval ID: | oval:org.mitre.oval:def:14662 | ||
Title: | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of anchors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted HTML document. | ||
Description: | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of anchors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted HTML document. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2011-0482 | Version: | 15 |
Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Google Chrome |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:21433 | |||
Oval ID: | oval:org.mitre.oval:def:21433 | ||
Title: | RHSA-2011:0177: webkitgtk security update (Moderate) | ||
Description: | The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2011:0177-01 CVE-2010-1780 CVE-2010-1782 CVE-2010-1783 CVE-2010-1784 CVE-2010-1785 CVE-2010-1786 CVE-2010-1787 CVE-2010-1788 CVE-2010-1790 CVE-2010-1792 CVE-2010-1793 CVE-2010-1807 CVE-2010-1812 CVE-2010-1814 CVE-2010-1815 CVE-2010-3113 CVE-2010-3114 CVE-2010-3115 CVE-2010-3116 CVE-2010-3119 CVE-2010-3255 CVE-2010-3257 CVE-2010-3259 CVE-2010-3812 CVE-2010-3813 CVE-2010-4197 CVE-2010-4198 CVE-2010-4204 CVE-2010-4206 CVE-2010-4577 | Version: | 393 |
Platform(s): | Red Hat Enterprise Linux 6 | Product(s): | webkitgtk |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:23285 | |||
Oval ID: | oval:org.mitre.oval:def:23285 | ||
Title: | ELSA-2011:0177: webkitgtk security update (Moderate) | ||
Description: | The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2011:0177-01 CVE-2010-1780 CVE-2010-1782 CVE-2010-1783 CVE-2010-1784 CVE-2010-1785 CVE-2010-1786 CVE-2010-1787 CVE-2010-1788 CVE-2010-1790 CVE-2010-1792 CVE-2010-1793 CVE-2010-1807 CVE-2010-1812 CVE-2010-1814 CVE-2010-1815 CVE-2010-3113 CVE-2010-3114 CVE-2010-3115 CVE-2010-3116 CVE-2010-3119 CVE-2010-3255 CVE-2010-3257 CVE-2010-3259 CVE-2010-3812 CVE-2010-3813 CVE-2010-4197 CVE-2010-4198 CVE-2010-4204 CVE-2010-4206 CVE-2010-4577 | Version: | 125 |
Platform(s): | Oracle Linux 6 | Product(s): | webkitgtk |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:27757 | |||
Oval ID: | oval:org.mitre.oval:def:27757 | ||
Title: | DEPRECATED: ELSA-2011-0177 -- webkitgtk security update (moderate) | ||
Description: | [1.2.6-2] - Added fix for js regression [1.2.6-1] - Update to 1.2.6 | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2011-0177 CVE-2010-3255 CVE-2010-3257 CVE-2010-3259 CVE-2010-3812 CVE-2010-3813 CVE-2010-1780 CVE-2010-1782 CVE-2010-1783 CVE-2010-1784 CVE-2010-1785 CVE-2010-1786 CVE-2010-1787 CVE-2010-1788 CVE-2010-1790 CVE-2010-1792 CVE-2010-1793 CVE-2010-1807 CVE-2010-1812 CVE-2010-1814 CVE-2010-1815 CVE-2010-3113 CVE-2010-3114 CVE-2010-3115 CVE-2010-3116 CVE-2010-3119 CVE-2010-4197 CVE-2010-4198 CVE-2010-4204 CVE-2010-4206 CVE-2010-4577 | Version: | 4 |
Platform(s): | Oracle Linux 6 | Product(s): | webkitgtk |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:7646 | |||
Oval ID: | oval:org.mitre.oval:def:7646 | ||
Title: | Google Chrome before 7.0.517.41 does not properly handle animated GIF images | ||
Description: | Google Chrome before 7.0.517.41 does not properly handle animated GIF images, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted image. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-4040 | Version: | 13 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Google Chrome |
Definition Synopsis: | |||
CPE : Common Platform Enumeration
ExploitDB Exploits
id | Description |
---|---|
2012-11-01 | Konqueror 4.7.3 Memory Corruption |
OpenVAS Exploits
Date | Description |
---|---|
2012-06-05 | Name : RedHat Update for webkitgtk RHSA-2011:0177-01 File : nvt/gb_RHSA-2011_0177-01_webkitgtk.nasl |
2011-08-27 | Name : Ubuntu Update for webkit USN-1195-1 File : nvt/gb_ubuntu_USN_1195_1.nasl |
2011-05-12 | Name : Debian Security Advisory DSA 2188-1 (webkit) File : nvt/deb_2188_1.nasl |
2011-03-09 | Name : Gentoo Security Advisory GLSA 201012-01 (chromium) File : nvt/glsa_201012_01.nasl |
2011-03-07 | Name : Mandriva Update for webkit MDVSA-2011:039 (webkit) File : nvt/gb_mandriva_MDVSA_2011_039.nasl |
2011-03-07 | Name : Debian Security Advisory DSA 2166-1 (chromium-browser) File : nvt/deb_2166_1.nasl |
2011-03-05 | Name : FreeBSD Ports: webkit-gtk2 File : nvt/freebsd_webkit-gtk23.nasl |
2011-02-18 | Name : Fedora Update for webkitgtk FEDORA-2011-1224 File : nvt/gb_fedora_2011_1224_webkitgtk_fc13.nasl |
2011-02-08 | Name : Google Chrome multiple vulnerabilities - February 11(Linux) File : nvt/gb_google_chrome_mult_vuln_feb11_lin.nasl |
2011-02-08 | Name : Google Chrome multiple vulnerabilities - February 11(Windows) File : nvt/gb_google_chrome_mult_vuln_feb11_win.nasl |
2011-01-27 | Name : Google Chrome multiple vulnerabilities - Jan11 (Linux) File : nvt/gb_google_chrome_mult_vuln_jan11_lin.nasl |
2011-01-27 | Name : Google Chrome multiple vulnerabilities - Jan11 (Windows) File : nvt/gb_google_chrome_mult_vuln_jan11_win.nasl |
2011-01-24 | Name : FreeBSD Ports: webkit-gtk2 File : nvt/freebsd_webkit-gtk22.nasl |
2011-01-11 | Name : Fedora Update for webkitgtk FEDORA-2011-0121 File : nvt/gb_fedora_2011_0121_webkitgtk_fc13.nasl |
2010-12-29 | Name : Google Chrome multiple vulnerabilities - Dec10 (Windows) File : nvt/gb_google_chrome_mult_vuln_dec10_win01.nasl |
2010-12-29 | Name : Google Chrome multiple vulnerabilities - Dec10 (Linux) File : nvt/gb_google_chrome_mult_vuln_dec10_lin01.nasl |
2010-12-27 | Name : Google Chrome multiple vulnerabilities - Dec 10(Windows) File : nvt/gb_google_chrome_mult_vuln_dec10_win.nasl |
2010-12-27 | Name : Google Chrome multiple vulnerabilities - Dec 10(Linux) File : nvt/gb_google_chrome_mult_vuln_dec10_lin.nasl |
2010-11-18 | Name : Google Chrome multiple vulnerabilities - November 10(Windows) File : nvt/gb_google_chrome_mult_vuln_nov10_win.nasl |
2010-11-18 | Name : Google Chrome multiple vulnerabilities - November 10(Linux) File : nvt/gb_google_chrome_mult_vuln_nov10_lin.nasl |
2010-10-28 | Name : Google Chrome multiple vulnerabilities - October 10(Linux) File : nvt/gb_google_chrome_mult_vuln_oct10_lin.nasl |
2010-10-28 | Name : Google Chrome multiple vulnerabilities - October 10(Windows) File : nvt/gb_google_chrome_mult_vuln_oct10_win.nasl |
2010-10-22 | Name : Ubuntu Update for webkit vulnerabilities USN-1006-1 File : nvt/gb_ubuntu_USN_1006_1.nasl |
2010-09-22 | Name : Fedora Update for webkitgtk FEDORA-2010-14419 File : nvt/gb_fedora_2010_14419_webkitgtk_fc12.nasl |
2010-09-22 | Name : Fedora Update for webkitgtk FEDORA-2010-14409 File : nvt/gb_fedora_2010_14409_webkitgtk_fc13.nasl |
2010-08-02 | Name : Apple Safari Multiple Vulnerabilities - July 10 File : nvt/secpod_apple_safari_mult_vuln_jul10.nasl |
2010-08-02 | Name : Google Chrome Multiple Unspecified Vulnerabilities - July 10 File : nvt/secpod_google_chrome_mult_unspecified_vuln_jul10.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
70989 | Google Chrome Drag and Drop Same Origin Policy Bypass Google Chrome contains a flaw related to the failure to properly restrict cross-origin drag and drop operations that may allow a remote attacker to bypass the Same Origin Policy. No further details have been provided. |
70465 | Google Chrome HTML Document Anchor Unspecified Variable Casting Remote DoS Google Chrome contains a flaw that may allow a denial of service. The issue is triggered when the program fails to properly perform a cast of an unspecified variable during handling of anchors, allowing a context-dependent attacker to use a crafted HTML document to cause a denial of servce or possibly have other unspecified impact. |
70457 | Google Chrome CSS Token Sequence Cursor Stale Pointer Remote DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when the program fails to properly handle Cascading Style Sheets token sequences in conjunction with cursors, allowing a remote attacker to cause a denial of service via a 'stale pointer'. |
70106 | Google Chrome Cursor Handling Stale Pointer Remote DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when the program fails to properly perform cursor handling, allowing a remote attacker to cause a denial of service via unknown vectors leading to 'stale pointers'. |
70105 | Google Chrome CSS Token Sequence Out-of-bounds Read Remote DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when the program fails to properly parse CSS token sequences, allowing a remote attacker to cause an out-of-bounds read denial of service via unspecified vectors. |
69672 | Google Chrome Mouse Drag Event Use-after-free Remote DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when a use-after-free error in the handling of mouse dragging events is exploited to cause a loss of availability. |
69671 | Google Chrome SVG Animation Use-after-free Remote DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when a use-after-free vulnerability is exploited to cause a loss of availability for the program via vectors involving SVG animations. |
69165 | Google Chrome SVG Document use Element Variable Casting Weakness Remote DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when the program fails to properly perform the cast of an unspecified variable during processing of an SVG use element, allowing a context-dependent attacker to use a crafted SVG document to cause a denial of service or possibly have other unspecified impact. |
68841 | Google Chrome Crafted Animated GIF Handling Memory Corruption A memory corruption flaw exists in Google Chrome. The program fails to sanitize user-supplied input when processing animated GIF images, resulting in memory corruption. With a specially crafted .gif image file, a context-dependent attacker can execute arbitrary code. |
66847 | Apple Safari WebKit Text Node Dynamic Modification Arbitrary Code Execution Apple Safari WebKit contains a memory corruption flaw related to WebKit's handling of dynamic modifications to text nodes. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code via a crafted HTML document. |
66748 | Google Chrome Rendering Implementation Unspecified Remote DoS |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Google Chrome Uninitialized bug_report Pointer Code Execution RuleID : 19217 - Revision : 14 - Type : BROWSER-CHROME |
2014-01-10 | Google Chrome Uninitialized bug_report Pointer Code Execution RuleID : 19216 - Revision : 14 - Type : BROWSER-CHROME |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2014-12-15 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201412-09.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_libwebkit-110223.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_libwebkit-110104.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0177.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110125_webkitgtk_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
2011-08-24 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1195-1.nasl - Type : ACT_GATHER_INFO |
2011-06-29 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_webkit-1_2_7-update-110622.nasl - Type : ACT_GATHER_INFO |
2011-05-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_libwebkit-110223.nasl - Type : ACT_GATHER_INFO |
2011-05-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_libwebkit-110111.nasl - Type : ACT_GATHER_INFO |
2011-03-11 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2188.nasl - Type : ACT_GATHER_INFO |
2011-03-03 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-039.nasl - Type : ACT_GATHER_INFO |
2011-02-20 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2166.nasl - Type : ACT_GATHER_INFO |
2011-02-18 | Name : The remote Fedora host is missing a security update. File : fedora_2011-1224.nasl - Type : ACT_GATHER_INFO |
2011-02-11 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_35ecdcbe350111e0afcd0015f2db7bde.nasl - Type : ACT_GATHER_INFO |
2011-02-04 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_9_0_597_84.nasl - Type : ACT_GATHER_INFO |
2011-01-26 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0177.nasl - Type : ACT_GATHER_INFO |
2011-01-13 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_8_0_552_237.nasl - Type : ACT_GATHER_INFO |
2011-01-10 | Name : The remote Fedora host is missing a security update. File : fedora_2011-0121.nasl - Type : ACT_GATHER_INFO |
2011-01-03 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_06a12e26142e11e0bea20015f2db7bde.nasl - Type : ACT_GATHER_INFO |
2010-12-14 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_8_0_552_224.nasl - Type : ACT_GATHER_INFO |
2010-12-03 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_8_0_552_215.nasl - Type : ACT_GATHER_INFO |
2010-10-20 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_7_0_517_41.nasl - Type : ACT_GATHER_INFO |
2010-10-20 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1006-1.nasl - Type : ACT_GATHER_INFO |
2010-09-21 | Name : The remote Fedora host is missing a security update. File : fedora_2010-14419.nasl - Type : ACT_GATHER_INFO |
2010-09-16 | Name : The remote Fedora host is missing a security update. File : fedora_2010-14409.nasl - Type : ACT_GATHER_INFO |
2010-09-02 | Name : The remote host contains a multimedia application that has multiple vulnerabi... File : itunes_10_0_banner.nasl - Type : ACT_GATHER_INFO |
2010-09-02 | Name : The remote host contains an application that has multiple vulnerabilities. File : itunes_10_0.nasl - Type : ACT_GATHER_INFO |
2010-07-28 | Name : The remote host contains a web browser that is affected by several vulnerabil... File : safari_5_0_1.nasl - Type : ACT_GATHER_INFO |
2010-07-28 | Name : The remote host contains a web browser that is affected by several vulnerabil... File : macosx_Safari5_0_1.nasl - Type : ACT_GATHER_INFO |
2010-07-27 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_5_0_375_125.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-10-28 13:31:16 |
|
2014-02-17 11:29:58 |
|