Google Chrome < 13.0.782.218 Out of Date CA List (deprecated)

Medium Nessus Network Monitor Plugin ID 6020

Synopsis

The remote host contains a web browser that uses an out of date certificate authority list.

Description

Versions of Google Chrome earlier than 13.0.782.218 use an out of date certificate authority list. Due to the issuance of several fraudulent SSL certificates, the certificate authority DigiNotar has been disabled in Google Chrome.

Solution

Upgrade to Google Chrome 13.0.782.218 or later.

See Also

http://googlechromereleases.blogspot.com/2011/08/stable-update.html

http://googleonlinesecurity.blogspot.com/2011/08/update-on-attempted-man-in-middle.html

http://codereview.chromium.org/7791032/diff/2001/net/base/x509_certificate.cc

Plugin Details

Severity: Medium

ID: 6020

File Name: 6020.prm

Family: Web Clients

Published: 2011/08/31

Modified: 2016/01/15

Dependencies: 1735, 8314

Nessus ID: 56023

Risk Information

Risk Factor: Medium

Vulnerability Information

CPE: cpe:/a:google:chrome

Patch Publication Date: 2011/08/30

Vulnerability Publication Date: 2011/08/29