Google Chrome < 59.0.3071.115 Character Sanitization Vulnerability
Medium Nessus Network Monitor Plugin ID 700343
SynopsisThe remote host is utilizing a web browser that is affected by a character sanitization issue.
DescriptionThe version of Google Chrome installed on the remote host is prior to 59.0.3071.115, and is affected by a flaw that is triggered as it does not properly limit U+0620 characters (Arabic letter KASHMIRI YEH) before displaying them as Unicode. With a specially crafted IDN domain, a context-dependent attacker can spoof a valid URL and conduct phishing attacks.
SolutionUpgrade to Chrome version 59.0.3071.115 or later.