Google Chrome < 48.0.2564.82 Multiple Vulnerabilities

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host contains a web browser that is affected by
multiple vulnerabilities.

Description :

The version of Google Chrome installed on the remote Windows host is
prior to 48.0.2564.82. It is, therefore, affected by multiple
vulnerabilities :

- A unspecified vulnerability exists in Google V8 when
handling compatible receiver checks hidden behind
receptors. An attacker can exploit this to have an
unspecified impact. No other details are available.
(CVE-2016-1612)

- A user-after-free error exists in PDFium due to improper
invalidation of IPWL_FocusHandler and IPWL_Provider upon
destruction. An attacker can exploit this to deference
already freed memory, resulting in the execution of
arbitrary code. (CVE-2016-1613)

- An unspecified vulnerability exists in Blink that is
related to the handling of bitmaps. An attacker can
exploit this to access sensitive information. No other
details are available. (CVE-2016-1614)

- An unspecified vulnerability exists in omnibox that is
related to origin confusion. An attacker can exploit
this to have an unspecified impact. No other details are
available. (CVE-2016-1615)

- An unspecified vulnerability exists that allows an
attacker to spoof a displayed URL. No other details are
available. (CVE-2016-1616)

- An unspecified vulnerability exists that is related to
history sniffing with HSTS and CSP. No other details
are available. (CVE-2016-1617)

- A flaw exists in Blink due to the weak generation of
random numbers by the ARC4-based random number
generator. An attacker can exploit this to gain
access to sensitive information. No other details are
available. (CVE-2016-1618)

- A out-of-bounds read error exists in PDFium in file
fx_codec_jpx_opj.cpp in the sycc4{22,44}_to_rgb()
functions. An attacker can exploit this to cause a
denial of service by crashing the application linked
using the library. (CVE-2016-1619)

- Multiple vulnerabilities exist, the most serious of
which allow an attacker to execute arbitrary code via a
crafted web page. (CVE-2016-1620)

See also :

http://www.nessus.org/u?7f4ae8d4

Solution :

Upgrade to Google Chrome version 48.0.2564.82 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.4
(CVSS2#E:POC/RL:U/RC:ND)
Public Exploit Available : true

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now