Google Chrome < 48.0.2564.82 Multiple Vulnerabilities

High Nessus Network Monitor Plugin ID 9062

Synopsis

The remote host is utilizing a web browser that is affected by multiple vulnerabilities.

Description

The version of Google Chrome on the remote host is prior to 48.0.2564.82 and is affected by the following vulnerabilities :

- An unspecified vulnerability exists in Google V8 when handling compatible receiver checks hidden behind receptors. An attacker can exploit this to have an unspecified impact. No other details are available. (CVE-2016-1612)
- A use-after-free error exists in 'PDFium' due to improper invalidation of 'IPWL_FocusHandler' and 'IPWL_Provider' upon destruction. An attacker can exploit this to dereference already freed memory, resulting in the execution of arbitrary code. (CVE-2016-1613)
- An unspecified vulnerability exists in 'Blink' that is related to the handling of bitmaps. An attacker can exploit this to access sensitive information. No other details are available. (CVE-2016-1614)
- An unspecified vulnerability exists in 'omnibox' that is related to origin confusion. An attacker can exploit this to have an unspecified impact. No other details are available. (CVE-2016-1615)
- An unspecified vulnerability exists that allows an attacker to spoof a displayed URL. No other details are available. (CVE-2016-1616)
- An unspecified vulnerability exists that is related to history sniffing with HSTS and CSP. No other details are available. (CVE-2016-1617)
- A flaw exists in 'Blink' due to the weak generation of random numbers by the ARC4-based random number generator. An attacker can exploit this to gain access to sensitive information. No other details are available. (CVE-2016-1618)
- An out-of-bounds read error exists in 'PDFium' in file 'fx_codec_jpx_opj.cpp' in the 'sycc4{22,44}_to_rgb()' functions. An attacker can exploit this to cause a denial of service by crashing the application linked using the library. (CVE-2016-1619)
- Multiple vulnerabilities exist, the most serious of which allow an attacker to execute arbitrary code via a crafted web page. (CVE-2016-1620)
- A flaw in 'objects.cc' is triggered when handling cleared 'WeakCells', which may allow a context-dependent attacker to have an unspecified impact. No further details have been provided. (CVE-2016-2051)

Solution

Update the Chrome browser to 48.0.2564.82 or later.

See Also

http://googlechromereleases.blogspot.com/2016/01/beta-channel-update_20.html

Plugin Details

Severity: High

ID: 9062

File Name: 9062.prm

Family: Web Clients

Published: 2016/01/29

Modified: 2016/11/23

Dependencies: 4645

Nessus ID: 88088, 88089

Risk Information

Risk Factor: High

CVSSv2

Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSSv3

Base Score: 8.1

Temporal Score: 7.5

Vector: CVSS3#AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS3#E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:google:chrome

Patch Publication Date: 2015/10/13

Vulnerability Publication Date: 2015/09/25

Reference Information

CVE: CVE-2016-1612, CVE-2016-1613, CVE-2016-1614, CVE-2016-1615, CVE-2016-1616, CVE-2016-1617, CVE-2016-1618, CVE-2016-1619, CVE-2016-1620