9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.367 Low
EPSS
Percentile
97.2%
Versions of Google Chrome earlier than 18.0.1025.151 are potentially affected by the following vulnerabilities :
An out-of-bounds read issue exists related to βSkiaβ clipping. (CVE-2011-3066)
An error exists related to cross-origin iframe replacement. (CVE-2011-3067)
Use-after-free errors exist related to βrun-inβ handling, line box editing, v8 JavaScript engine bindings, βHTMLMediaElemetβ, SVG resource handling, media handling, style command application, and focus handling. (CVE-2011-3068, CVE-2011-3069, CVE-2011-3070, CVE-2011-3071, CVE-2011-3073, CVE-2011-3074, CVE-2011-3075, CVE-2011-3076)
A cross-origin violation error exists related to pop-up windows. (CVE-2011-3072)
A read-after-free error exists related to script binding. (CVE-2011-3077)\
The bundled Adobe Flash Player is vulnerable to several memory corruption issues that can lead to arbitrary code execution. (CVE-2012-0724, CVE-2012-0725)
Binary data 6403.pasl