Google Chrome < 8.0.552.237 Multiple Vulnerabilities

High Nessus Plugin ID 51511


The remote host contains a web browser that is affected by multiple vulnerabilities.


The version of Google Chrome installed on the remote host is earlier than 8.0.552.237. Such versions are reportedly affected by multiple vulnerabilities :

- A browser crash exists in extensions notification handling. (Issue #58053)

- Bad pointer handling exists in node iteration.
(Issue #65764)

- Multiple crashes exist when printing multi-page PDFs.
(Issue #66334)

- A stale pointer exists with CSS + canvas. (Issue #66560)

- A stale pointer exists with CSS + cursors.
(Issue #66748)

- A use-after-free error exists in PDF handling.
(Issue #67100)

- A stack corruption error exists after PDF out-of-memory conditions. (Issue #67208)

- A bad memory access issue exists when handling mismatched video frame sizes. (Issue #67303)

- A stale pointer exists with SVG use element.
(Issue #67363)

- An uninitialized pointer exists in the browser which is triggered by rogue extensions. (Issue #67393)

- Multiple buffer overflows exist in the Vorbis decoder.
(Issue #68115)

- A buffer overflow exists in PDF shading. (Issue #68170)

- A bad cast exists in anchor handling. (Issue #68178)

- A bad cast exists in video handling. (Issue #68181)

- A stale rendering node exists after DOM node removal.
(Issue #68439)

- A stale pointer exists in speech handling.
(Issue #68666)


Upgrade to Google Chrome 8.0.552.237 or later.

See Also

Plugin Details

Severity: High

ID: 51511

File Name: google_chrome_8_0_552_237.nasl

Version: $Revision: 1.12 $

Type: local

Agent: windows

Family: Windows

Published: 2011/01/13

Modified: 2014/12/18

Dependencies: 34196

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 8.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:google:chrome

Required KB Items: SMB/Google_Chrome/Installed

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2011/01/12

Vulnerability Publication Date: 2011/01/12

Reference Information

CVE: CVE-2011-0470, CVE-2011-0471, CVE-2011-0472, CVE-2011-0473, CVE-2011-0474, CVE-2011-0475, CVE-2011-0476, CVE-2011-0477, CVE-2011-0478, CVE-2011-0479, CVE-2011-0480, CVE-2011-0481, CVE-2011-0482, CVE-2011-0483, CVE-2011-0484, CVE-2011-0485

BID: 45788, 47154

OSVDB: 70453, 70454, 70455, 70456, 70457, 70458, 70459, 70460, 70461, 70462, 70463, 70464, 70465, 70466, 70467, 70468

Secunia: 42850