http://code.google.com/p/chromium/issues/detail?id=85102

http://googlechromereleases.blogspot.com/2011/06/stable-channel-update_28.html

45097

1025730

oval:org.mitre.oval:def:14479

The remote host is affected by the vulnerability described in GLSA-201111-01 (Chromium, V8: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in Chromium and V8. Please       review the CVE identifiers and release notes referenced below for       details.
  Impact :

    A local attacker could gain root privileges (CVE-2011-1444, fixed in       chromium-11.0.696.57).
    A context-dependent attacker could entice a user to open a specially       crafted website or JavaScript program using Chromium or V8, possibly       resulting in the execution of arbitrary code with the privileges of the       process, or a Denial of Service condition. The attacker also could obtain       cookies and other sensitive information, conduct man-in-the-middle       attacks, perform address bar spoofing, bypass the same origin policy,       perform Cross-Site Scripting attacks, or bypass pop-up blocks.
  Workaround :

    There is no known workaround at this time.

The version of Google Chrome installed on the remote host is earlier than 12.0.742.112.  As such, it is affected by the following vulnerabilities :

  - An out-of-bounds read in NPAPI string handling exists.
    (Issue #77493)

  - A use-after-free issue exists in SVG font handling.
    (Issue #84355)

  - A memory corruption issue exists in CSS parsing.
    (Issue #85003)

  - Multiple lifetime and re-entrancy issues exist in the     HTML parser. (Issue #85102)

  - A bad bounds check exists in v8. (Issue #85177)

  - A use-after-free issue exists with the SVG use element.
    (Issue #85211)

  - A use-after-free issue exists in text selection.
    (Issue #85418)

Versions of Google Chrome earlier than 12.0.742.112 are potentially affected by multiple vulnerabilities :

  - An out-of-bounds read in NPAPI string handling exists. (Issue 77493)

  - A user-after-free issue exists in SVG font handling. (Issue 84355)

  - A memory corruption issue exists in CSS parsing. (Issue 85003)

  - Multiple lifetime and re-entrancy issues exist in the HTML parser. (Issue 85102)

  - A bad bounds check exists in v8. (Issue 85177)

  - A use-after-free issue exists with the SVG use element. (Issue 85211)

  - A use-after-free issue exists in text selection. (Issue 85418)

ID	Name	Product	Family	Severity
56686	GLSA-201111-01 : Chromium, V8: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	high
55460	Google Chrome < 12.0.742.112 Multiple Vulnerabilities	Nessus	Windows	high
800903	Google Chrome < 12.0.742.112 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	high
5970	Google Chrome < 12.0.742.112 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	high
51069	FreeBSD : chromium -- multiple vulnerabilities (6887828f-0229-11e0-b84d-00262d5ed8ee)	Nessus	FreeBSD Local Security Checks	critical

CVE-2011-2350

MEDIUM

Description

References

Details

Risk Information

CVSS v2.0

Vulnerable Software

Configuration 1

Tenable Plugins

high

high

high

high

critical