Google Chrome < 10.0.648.127 Multiple Vulnerabilities

High Log Correlation Engine Plugin ID 800960


The remote host contains a web browser that is vulnerable to multiple attack vectors.


Versions of Google Chrome earlier than 10.0.648.127 are potentially affected by multiple vulnerabilities :

- It may be possible to navigate or close the top location in a sandboxed frame. (42574, 42765)

- An X server bug exists which could cause the application to crash with long messages. Note that this issue only affects Google Chrome on Linux. (49747)

- It is possible to crash the browser with parallel prints. Note that this issue only affects Google Chrome on Linux. (66962)

- A cross-origin error message leak exists (69187)

- A memory corruption issue exists with counter nodes. (69628)

- An unspecified issue exists with stale nodes in box layout. (70027)

- A cross-origin error message leak exists with workers. (70336)

- A use-after-free error exists with DOM URL handling. (70442)

- An out-of-bounds read exists when handling unicode ranges. (70779)

- A same origin policy bypass exists in V8. (70877)

- It may be possible to bypass the pop-up blocker. (70885, 71167)

- A use-after-free error exists in document script lifetime handling. (71763)

- An out-of-bounds write issue exists in the OGG container. (71788)

- A stale pointer exists in table painting. (72028)

- A corrupt out-of-bounds structure may be used in video code. (73026)

- It may be possible to crash the application with the DataView object. (73066)

- A bad cast exists in text rendering. (73134)

- A stale pointer exists in the WebKit context code. (73196)

- It may be possible for heap addresses to leak in XSLT. (73716)

- A stale pointer exists with SVG cursors. (73746)

- It is possible for the DOM tree to be corrupted with attribute handling. (74030)

- An unspecified corruption exists via re-entrancy of RegExp code. (74662)

- An invalid memory access exists in v8. (74675)


Upgrade to Google Chrome 10.0.648.127 or later.

See Also

Plugin Details

Severity: High

ID: 800960

File Name: 800960.prm

Family: Web Clients

Published: 2011/03/09

Nessus ID: 52589

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

Patch Publication Date: 2011/03/08

Vulnerability Publication Date: 2011/03/08

Reference Information

CVE: CVE-2011-1185, CVE-2011-1186, CVE-2011-1187, CVE-2011-1188, CVE-2011-1189, CVE-2011-1190, CVE-2011-1191, CVE-2011-1192, CVE-2011-1193, CVE-2011-1194, CVE-2011-1195, CVE-2011-1196, CVE-2011-1197, CVE-2011-1198, CVE-2011-1199, CVE-2011-1200, CVE-2011-1201, CVE-2011-1202, CVE-2011-1203, CVE-2011-1204, CVE-2011-1285, CVE-2011-1286, CVE-2011-1413

BID: 46785, 46818, 50062