Google Chrome < 47.0.2526.106 Multiple RCE
High Nessus Plugin ID 87417
SynopsisThe remote Windows host contains a web browser that is affected by multiple vulnerabilities.
DescriptionThe version of Google Chrome installed on the remote Windows host is prior to 47.0.2526.106. It is, therefore, affected by multiple vulnerabilities :
- The WebCursor::Deserialize() method in file common/cursors/webcursor.cc. is affected by an integer overflow condition that allows an attacker to execute arbitrary code. (VulnDB 131843)
- The MidiManagerAlsa::DispatchSendMidiData() method in file media/midi/midi_manager_alsa.cc contains a unspecified flaw that allows an attacker to execute arbitrary code outside of sandbox restrictions.
SolutionUpgrade to Google Chrome version 47.0.2526.106 or later.