Detections
Analytics
Google Chrome < 5.0.375.99 Multiple Vulnerabilities
high Log Correlation Engine Plugin ID 800949
Synopsis
The remote host contains a web browser that is vulnerable to multiple attack vectors.Description
Versions of Google Chrome earlier than 5.0.375.99 are potentially affected by multiple vulnerabilities :- An unspecified issue in WebGL can trigger an OOB read. (Bug 42396)
- Sandboxed iframes are not isolated strongly enough. (Bug 42575)
- A memory corruption issue exists with invalid SVGs. (Bug 43488)
- A memory corruption issue exists in the bidi algorithm. (Bug 44424)
- A memory corruption issue exists with invalid PNGs. (Bug 45983)
- A memory corruption exists in CSS style rendering. (Bug 46360)
- An unspecified issue with print dialogs. (Bug 46575)
- An unspecified crash relating to modal dialogs. (Bug 47056)
Solution
Upgrade to Google Chrome 5.0.375.99 or later.See Also
googlechromereleases.blogspot.com/2010/07/stable-channel-update.html
Plugin Details
Severity: High
ID: 800949
Family: Web Clients
Published: 7/5/2010
Nessus ID: 47595
Risk Information
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P
Vulnerability Information
Patch Publication Date: 7/2/2010
Vulnerability Publication Date: 7/2/2010
Reference Information
CVE: CVE-2010-2645, CVE-2010-2646, CVE-2010-2647, CVE-2010-2648, CVE-2010-2649, CVE-2010-2650, CVE-2010-2651, CVE-2010-2652
BID: 41334