Detections
Analytics

Google Chrome < 41.0.2272.118 Multiple Vulnerabilities

high Nessus Network Monitor Plugin ID 8706

Synopsis

The remote host contains a web browser that is vulnerable to multiple attack vectors.

Description

The version of Google Chrome on the remote host is prior to 41.0.2272.118 and is affected by the following vulnerabilities :

 - A remote code execution vulnerability exists due to bugs in the V8, Gamepad, and IPC components. (CVE-2015-1233)

 - A buffer overflow vulnerability exists due to a race condition in the GPU component. (CVE-2015-1234)

Solution

Upgrade to Google Chrome 41.0.2272.118 or later.

See Also

http://googlechromereleases.blogspot.com/2015/04/stable-channel-update.html

Plugin Details

Severity: High

ID: 8706

Family: Web Clients

Published: 4/24/2015

Updated: 3/6/2019

Nessus ID: 82534

Risk Information

VPR

Risk Factor: Medium

Score: 5.8

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 8.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:google:chrome

Patch Publication Date: 4/1/2015

Vulnerability Publication Date: 4/1/2015

Reference Information

CVE: CVE-2015-1233

BID: 73484