The host is installed with Google Chrome before 11.0.696.65 and is prone to an integer overflow vulnerability. A flaw is present in the FilterEffect::copyImageBytes function in platform/graphics/filters/FilterEffect.cpp in the SVG filter implementation in WebCore in WebKit, which fails to properly handle crafted dimensions. Successful exploitation allows remote attackers to cause a denial of servi ...
The host is installed with Google Chrome before 11.0.696.65 and is prone to an integer underflow vulnerability. A flaw is present in the HTMLFormElement::removeFormElement function in html/HTMLFormElement.cpp in WebCore in WebKit, which fails to properly handle a crafted HTML document containing a FORM element. Successful exploitation allows remote attackers to cause a denial of service (applicati ...
The host is installed with Google Chrome before 11.0.696.65 and is prone to an integer underflow vulnerability. A flaw is present in the HTMLFormElement::removeFormElement function in html/HTMLFormElement.cpp in WebCore in WebKit, which fails to properly handle a crafted HTML document containing a FORM element. Successful exploitation allows remote attackers to cause a denial of service (applicati ...
The host is installed with Google Chrome before 11.0.696.65 and is prone to an use-after-free vulnerability. A flaw is present in the FrameView::calculateScrollbarModesForLayout function in page/FrameView.cpp in WebCore in WebKit, which fails to properly handle a crafted JavaScript code that calls the removeChild method during interaction with a FRAME element. Successful exploitation allows remote ...
The host is installed with Google Chrome before 11.0.696.65 and is prone to an use-after-free vulnerability. A flaw is present in the FrameView::calculateScrollbarModesForLayout function in page/FrameView.cpp in WebCore in WebKit, which fails to properly handle a crafted JavaScript code that calls the removeChild method during interaction with a FRAME element. Successful exploitation allows remote ...
The host is installed with Google Chrome before 11.0.696.65 and is prone to a denial of service vulnerability. A flaw is present in the rendering/svg/RenderSVGText.cpp in WebCore in WebKit, which does not properly perform a cast of an unspecified variable during an attempt to handle a block child. Successful exploitation allows remote attackers to cause a denial of service (application crash) or p ...
The host is installed with Google Chrome before 11.0.696.65 and is prone to a denial of service vulnerability. A flaw is present in the rendering/svg/RenderSVGText.cpp in WebCore in WebKit, which does not properly perform a cast of an unspecified variable during an attempt to handle a block child. Successful exploitation allows remote attackers to cause a denial of service (application crash) or p ...
The host is missing a low severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. A flaw is present in the WebKit, which fails to handle crafted dimensions, SVG document, HTML document, JavaScript code or text element. Successful exploitation allows remote attackers to cause a denial of service (application crash) or possibly have unspecified ...
The host is missing a low severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. A flaw is present in the WebKit, which fails to handle crafted dimensions, SVG document, HTML document, JavaScript code or text element. Successful exploitation allows remote attackers to cause a denial of service (application crash) or possibly have unspecified ...
The host is installed with Google Chrome before 11.0.696.65 and is prone to denial of service vulnerability. A flaw is present in the rendering/svg/RenderSVGResourceFilter.cpp in WebCore in WebKit, which fails to properly handle a crafted SVG document that leads to a "stale pointer". Successful exploitation allows remote attackers to cause a denial of service (application crash) or possibly have u ...