Google Chrome < 8.0.552.237 Multiple Vulnerabilities

High Nessus Network Monitor Plugin ID 5742

Synopsis

The remote host contains a web browser that is vulnerable to multiple attack vectors.

Description

Versions of Google Chrome earlier than 8.0.552.237 are potentially affected by multiple vulnerabilities :

- A browser crash exists in extensions notification handling. (58053)

- Bad pointer handling exists in node iteration. (65764)

- Multiple crashes exist when printing multi-page PDFs. (66334)

- A stale pointer exists with CSS + canvas. (66560)

- A stale pointer exists with CSS + cursors. (66748)

- A use after free error exists in PDF handling. (67100)

- A stack corruption error exists after PDF out-of-memory conditions. (67208)

- A bad memory access issue exists when handling mismatched video frame sizes. (67303)

-A stale pointer exists with SVG use elements. (67363)

- An uninitialized pointer exists in the browser which is triggered by rogue extensions. (67393)

- Multiple buffer overflows exists in the Vorbis decoder. (68115)

- A buffer overflow exists in PDF shading. (68170)

- A bad cast exists in anchor handling. (68178)

- A bad cast exists in video handling. (68181)

- A stale rendering node exists after DOM node removal. (68439)

- A stale pointer exists in speech handling. (68666)

Solution

Upgrade to Google Chrome 8.0.552.237 or later.

See Also

http://googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html

Plugin Details

Severity: High

ID: 5742

File Name: 5742.prm

Family: Web Clients

Published: 2010/12/14

Modified: 2016/12/06

Dependencies: 1735, 8314

Nessus ID: 51511

Risk Information

Risk Factor: High

CVSSv2

Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSSv3

Base Score: 8.1

Temporal Score: 7.1

Vector: CVSS3#AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS3#E:U/RL:O/RC:C

Vulnerability Information

Patch Publication Date: 2010/12/13

Vulnerability Publication Date: 2010/12/13

Reference Information

CVE: CVE-2011-0470, CVE-2011-0471, CVE-2011-0472, CVE-2011-0473, CVE-2011-0474, CVE-2011-0475, CVE-2011-0476, CVE-2011-0477, CVE-2011-0478, CVE-2011-0479, CVE-2011-0480, CVE-2011-0481, CVE-2011-0482, CVE-2011-0483, CVE-2011-0484, CVE-2011-0485

BID: 45788

OSVDB: 70453, 70454, 70455, 70456, 70457, 70458, 70459, 70460, 70461, 70462, 70463, 70464, 70465, 70466, 70467, 70468