Lucene search
K

47 matches found

OSV
OSV
added 2016/06/06 12:0 a.m.4 views

UBUNTU-CVE-2016-1697

The FrameLoader::startLoad function in WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 51.0.2704.79, does not prevent frame navigations during DocumentLoader detach operations, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScrip...

8.8CVSS7.3AI score0.01849EPSS
Exploits1References4
OSV
OSV
added 2016/06/05 11:59 p.m.3 views

CVE-2016-1697

The FrameLoader::startLoad function in WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 51.0.2704.79, does not prevent frame navigations during DocumentLoader detach operations, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScrip...

8.8CVSS7.3AI score0.01849EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2015/04/01 1:17 p.m.5 views

Mozilla: resource: // documents can load privileged pages (MFSA 2015-33)

A flaw was found in the way documents were loaded via resource URLs in, for example, Mozilla's PDF.js PDF file viewer. An attacker could use this flaw to bypass certain restrictions and under certain conditions even execute arbitrary code with the privileges of the user running Firefox...

5CVSS7.6AI score0.67135EPSS
Exploits3References5
NVD
NVD
added 2011/09/19 12:2 p.m.15 views

CVE-2011-2847

Use-after-free vulnerability in the document loader in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document...

6.8CVSS6.9AI score0.0156EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2011/09/19 12:2 p.m.22 views

CVE-2011-2847

Use-after-free vulnerability in the document loader in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document...

6.8CVSS6AI score0.0156EPSS
Exploits0References1
CVE
CVE
added 2011/09/17 10:0 a.m.58 views

CVE-2011-2847

This CVE (CVE-2011-2847) is a use-after-free in Google Chrome's document loader, exploitable via a crafted document to cause a denial of service (and possibly other impact). Affected software: Chrome before 14.0.835.163. Impact is described as DoS/other unspecified effects; remediation is to upgr...

6.8CVSS7AI score0.0156EPSS
Exploits0References12Affected Software1
ThreatPost
ThreatPost
added 2011/09/16 4:32 p.m.50 views

Google Fixes More Than 30 Flaws in Chrome

Google has fixed more than 30 security vulnerabilities in its Chrome browser with a new version the company released on Friday. The company also paid out more than $14,000 in rewards to the various researchers who reported bugs that were fixed with Chrome 14.0.835.163. The new version of Chrome...

7.5CVSS0.6AI score0.0369EPSS
Exploits6References36
Rows per page
Query Builder