icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Google Chrome < 2.0.172.43 Remote Code Execution

High

Synopsis

The remote host contains a web browser that is vulnerable to a remote code execution attack.

Description

The version of Google Chrome installed on the remote host is earlier than 2.0.172.43. Such versions have a flaw in the V8 Javascript engine which could potentially allow specially-crafted Javascript on a eb page to read unauthorize memory, bypassing security checks. An attacker could exploit this to run arbitrary code within the Chrome sand-box.

Solution

Upgrade to Google Chrome 2.0.172.43 or later.