Google Chrome < 25.0.1364.160 WebKit Type Confusion Code Execution

High Nessus Network Monitor Plugin ID 6709

Synopsis

The remote host contains a web browser that is affected by a code execution vulnerability

Description

Versions of Google Chrome prior to 25.0.1364.160 include a vulnerable WebKit version that is affected by a type confusion issue that could allow remote code execution.

Solution

Upgrade to Google Chrome 25.0.1364.160 or later.

See Also

http://www.nessus.org/u?e33f7e2c

Plugin Details

Severity: High

ID: 6709

File Name: 6709.prm

Family: Web Clients

Published: 2013/03/08

Modified: 2016/12/06

Dependencies: 1735, 8314

Nessus ID: 65097

Risk Information

Risk Factor: High

CVSSv2

Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

CVSSv3

Base Score: 8.1

Temporal Score: 7.5

Vector: CVSS3#AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS3#E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:google:chrome

Patch Publication Date: 2013/03/07

Vulnerability Publication Date: 2013/03/07

Reference Information

CVE: CVE-2013-0912

BID: 58388