Google Chrome < 59.0.3071.86 Multiple Vulnerabilities

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

A web browser installed on the remote Windows host is affected by
multiple vulnerabilities.

Description :

The version of Google Chrome installed on the remote Windows host is
prior to 59.0.3071.86. It is, therefore, affected by the following
vulnerabilities :

- A type confusion error exists in the Google V8 component
that allows an unauthenticated, remote attacker to
execute arbitrary code. (CVE-2017-5070)

- An out-of-bounds read error exists in the Google V8
component that allows an unauthenticated, remote
attacker to cause a denial of service condition or the
disclosure of sensitive information. (CVE-2017-5071)

- Multiple unspecified flaws exist in the Omnibox
component that allows an attacker to spoof the address
in the address bar. (CVE-2017-5072, CVE-2017-5076,
CVE-2017-5083, CVE-2017-5086)

- A use-after-free error exists in the print preview
functionality that allows an unauthenticated, remote
attacker to execute arbitrary code. (CVE-2017-5073)

- A use-after-free error exists in the Apps Bluetooth
component that allows an unauthenticated, remote
attacker to execute arbitrary code. (CVE-2017-5074)

- An unspecified flaw exists in the CSP reporting
component that allows an unauthenticated, remote
attacker to disclose sensitive information.
(CVE-2017-5075)

- An overflow condition exists in the Google Skia
component due to improper validation of user-supplied
input. An unauthenticated, remote attacker can exploit
this, by convincing a user to visit a specially crafted
website, to cause a denial of service condition or the
execution of arbitrary code. (CVE-2017-5077)

- An unspecified flaw exists in the mailto handling
functionality that allows an unauthenticated, remote
attacker to inject arbitrary commands. (CVE-2017-5078)

- An unspecified flaw exists in Blink that allows an
attacker to spoof components in the user interface.
(CVE-2017-5079)

- A use-after-free free error exists in the credit card
autofill functionality that allows an attacker to have
an unspecified impact. (CVE-2017-5080)

- An unspecified flaw exists that allows an
unauthenticated, remote attacker to bypass extension
verification mechanisms. (CVE-2017-5081)

- An unspecified flaw exists in the credit card editor
view functionality that allows an unauthenticated,
remote attacker to disclose credit card information.
(CVE-2017-5082)

- An unspecified flaw exists in the WebUI pages component
that allows an unauthenticated, remote attacker to
execute arbitrary JavaScript code. (CVE-2017-5085)

Note that Nessus has not tested for these issues but has instead
relied only on the application's self-reported version number.

See also :

http://www.nessus.org/u?6dde93a4

Solution :

Upgrade to Google Chrome version 59.0.3071.86 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.3
(CVSS2#E:POC/RL:OF/RC:ND)
Public Exploit Available : true

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now