How to Buy
This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
The remote Mac OS X host contains a web browser that is affected by
The version of Google Chrome installed on the remote host is a version
prior to 30.0.1599.66. It is, therefore, affected by multiple
- A race condition exists related to 'Web Audio'.
- Out-of-bounds read errors exist related to
the 'Window.prototype' object, 'Web Audio', and URL
parsing. (CVE-2013-2907, CVE-2013-2917, CVE-2013-2920)
- Several errors exist related to the address bar that
could allow spoofing attacks. (CVE-2013-2908,
- Use-after-free errors exist related to 'inline-block'
rendering, 'Web Audio', XSLT, PPAPI, XML document
parsing, Windows color chooser dialog, DOM, the
resource loader, the 'template' element and ICU.
(CVE-2013-2909, CVE-2013-2910, CVE-2013-2911,
CVE-2013-2912, CVE-2013-2913, CVE-2013-2914,
CVE-2013-2918, CVE-2013-2921, CVE-2013-2922,
- A memory corruption error exists in the V8
- Various, unspecified errors exist. (CVE-2013-2923)
See also :
Upgrade to Google Chrome 30.0.1599.66 or later.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.9
Public Exploit Available : false
Family: MacOS X Local Security Checks
Nessus Plugin ID: 70893 ()
Bugtraq ID: 6275262968
CVE ID: CVE-2013-2906CVE-2013-2907CVE-2013-2908CVE-2013-2909CVE-2013-2910CVE-2013-2911CVE-2013-2912CVE-2013-2913CVE-2013-2914CVE-2013-2915CVE-2013-2916CVE-2013-2917CVE-2013-2918CVE-2013-2919CVE-2013-2920CVE-2013-2921CVE-2013-2922CVE-2013-2923CVE-2013-2924
Nessus Professional: Scan unlimited IPs, run compliance checks & moreNessus Cloud: The power of Nessus for teams – from the cloud
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.