Unrated severityNVD Advisory· Published Jan 14, 2011· Updated Apr 29, 2026

CVE-2011-0472

Description

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle the printing of PDF documents, which allows user-assisted remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a multi-page document.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Google Chrome before 8.0.552.237 crashes when printing multi-page PDFs, allowing denial of service via user-assisted attack.

Vulnerability

Google Chrome versions prior to 8.0.552.237 and Chrome OS versions prior to 8.0.552.344 mishandle the printing of PDF documents. When a user attempts to print a multi-page PDF, the browser fails to properly process the document, leading to a crash. The vulnerability is triggered specifically during the print operation on a PDF with multiple pages.

Exploitation

An attacker must convince a user to open a specially crafted multi-page PDF document and initiate the print function. No additional authentication or network position is required beyond the user's interaction. The attack is user-assisted, relying on the victim performing the print action.

Impact

Successful exploitation results in a denial of service via application crash. The description also notes the possibility of unspecified other impact, though no further details are provided. The crash affects the browser process, potentially disrupting the user's session.

Mitigation

The vulnerability is fixed in Google Chrome version 8.0.552.237 and later, and in Chrome OS version 8.0.552.344 and later. Users should update to these versions or newer. No workarounds are documented. The issue is not listed on the CISA Known Exploited Vulnerabilities (KEV) catalog.

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Google/Chrome2 versions
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*range: <8.0.552.237
- (no CPE)range: < 8.0.552.237
Google/ChromeOS2 versions
cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:*range: <8.0.552.344
- (no CPE)range: < 8.0.552.344

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

code.google.com/p/chromium/issues/detailnvdExploitIssue TrackingVendor Advisory
googlechromereleases.blogspot.com/2011/01/chrome-stable-release.htmlnvdVendor Advisory
secunia.com/advisories/42951nvdThird Party Advisory
www.securityfocus.com/bid/45788nvdThird Party AdvisoryVDB Entry
www.srware.net/forum/viewtopic.phpnvdThird Party Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/64663nvdThird Party AdvisoryVDB Entry
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14622nvdThird Party Advisory
osvdb.org/70455nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000