Vulnerability & Exploit Database

Displaying all 10 entries

Results for: CVE-2015-1300 Back to search

USN-2735-1: Oxide vulnerabilities Vulnerability

  • Severity: 8
  • Published: September 03, 2015

Multiple unspecified vulnerabilities in Google Chrome before 45.0.2454.85 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

SUSE: CVE-2015-1300: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: September 03, 2015

The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to obtain sensitive information via crafted JavaScript code that le...

RHSA-2015:1712: chromium-browser security update Vulnerability

  • Severity: 8
  • Published: September 03, 2015

Chromium is an open-source web browser, powered by WebKit (Blink).Several flaws were found in the processing of malformed web content. A webpage containing malicious content could cause Chromium to crash or,potentially, execute arbitrary code with the privileges of the user runningChromium. (CVE-2015-1291, CVE-2015-1292, CVE-2015-1293, C...

Google Chrome Vulnerability: CVE-2015-1300 Vulnerability

  • Severity: 5
  • Published: September 03, 2015

The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to obtain sensitive information via crafted JavaScript code that le...

Gentoo Linux: CVE-2015-1300: Chromium: Multiple vulnerabilities Vulnerability

  • Severity: 5
  • Published: September 03, 2015

The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to obtain sensitive information via crafted JavaScript code that le...

DSA-3351-1 chromium-browser -- security update Vulnerability

  • Severity: 8
  • Published: September 03, 2015

Multiple unspecified vulnerabilities in Google Chrome before 45.0.2454.85 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

Cent OS: CVE-2011-4132: CESA-2012:0350 (kernel) Vulnerability

  • Severity: 2
  • Published: January 27, 2012

The cleanup_journal_tail function in the Journaling Block Device (JBD) functionality in the Linux kernel 2.6 allows local users to cause a denial of service (assertion error and kernel oops) via an ext3 or ext4 image with an "invalid log first block value."

Sun Patch: SunOS 5.10_x86: Apache 2 Patch Vulnerability

  • Severity: 10
  • Published: August 06, 2009

modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which allows remote attackers to execute arbitrary code via unspecifi...

Sun Patch: SunOS 5.10: Apache 2 Patch Vulnerability

  • Severity: 10
  • Published: August 06, 2009

modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which allows remote attackers to execute arbitrary code via unspecifi...