Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Google Chrome < 35.0.1916.153 Multiple Vulnerabilities

High

Synopsis

The remote host is running an outdated web browser that contains multiple vulnerabilities.

Description

The version of Google Chrome installed on the remote host is a version prior to 35.0.1916.153 and is thus missing fixes for multiple vulnerabilities, some of which can be leveraged for remote code execution:

- A use-after-free vulnerability in the filesystem API (CVE-2014-3154)

- Out-of-bounds read in SPDY implementation (CVE-2014-3155)

- A buffer overflow vulnerability in clipboard (CVE-2014-3156)

- A heap-based buffer overflow in media (CVE-2014-3157)

Solution

Update the Chrome browser to 35.0.1916.153 or later.