Google Chrome < 33.0.1750.149 Multiple Vulnerabilities (Mac OS X)

This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.

Synopsis :

The remote Mac OS X host contains a web browser that is affected by
multiple vulnerabilities.

Description :

The version of Google Chrome installed on the remote Mac OS X host is a
version prior to 33.0.1750.149. It is, therefore, affected by the
following vulnerabilities :

- Use-after-free errors exist related to 'speech' and
'web database' processing. (CVE-2014-1700,

- An input validation error exists related to 'events'
handling that could allow universal cross-site
scripting (UXSS) attacks. (CVE-2014-1701)

- A use-after-free error exists related to 'web sockets'
that could allow sandbox protection bypass.

- Multiple unspecified errors exist related to the V8
JavaScript engine. (CVE-2014-1704)

See also :

Solution :

Upgrade to Google Chrome 33.0.1750.149 or later.

Risk factor :

High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : false

Family: MacOS X Local Security Checks

Nessus Plugin ID: 72940 ()

Bugtraq ID: 66120

CVE ID: CVE-2014-1700

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial