Google Chrome < 32.0.1700.107 RCE

High Nessus Network Monitor Plugin ID 8107


The remote host contains a web browser that is affected by a remote code execution vulnerability via its built-in Flash plugin.


The remote host has Google Chrome browser installed. The previous version of Google Chrome (that is, prior to 32.0.1700.107) contain a plugin for Flash Player, which is vulnerable to remote code execution. Chrome 32.0.1700.107 has been released with an updated version of Flash, which patches this vulnerability.


Upgrade to Google Chrome 32.0.1700.107 or later.

See Also

Plugin Details

Severity: High

ID: 8107

Family: Web Clients

Published: 2014/02/11

Updated: 2019/03/06

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 8.1

Temporal Score: 8.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:google:chrome

Patch Publication Date: 2014/02/03

Vulnerability Publication Date: 2014/02/03

Exploitable With

Metasploit (windows/browser/adobe_flash_avm2.rb)

Reference Information

CVE: CVE-2014-0497

BID: 65327