Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.800800
Category:General
Title:Google Chrome multiple vulnerabilities - July 10
Summary:The host is running Google Chrome and is prone to multiple; vulnerabilities.
Description:Summary:
The host is running Google Chrome and is prone to multiple
vulnerabilities.

Vulnerability Insight:
Multiple flaws are due to:

- out-of-bounds read error with 'WebGL'.

- Application fails to isolate 'isandboxed IFRAME' elements, which has
unspecified impact and remote attack vectors.

- Memory corruption error in 'Unicode Bidirectional' Algorithm.

- Invalid 'SVG' document, which allows remote attackers to cause a denial
of service.

- Unspecified error, which allows remote attackers to cause a denial of
service via an invalid image.

- Memory corruption with invalid 'PNG', 'CSS style rendering'.

- Unspecified error in 'annoyance with print dialogs'.

- Application fails to properly implement 'modal dialogs'.

Vulnerability Impact:
Successful exploitation could allow the attackers to cause denial of service.

Affected Software/OS:
Google Chrome version prior to 5.0.375.99

Solution:
Upgrade to the Google Chrome 5.0.375.99 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2010-2645
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12090
Common Vulnerability Exposure (CVE) ID: CVE-2010-2646
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11981
Common Vulnerability Exposure (CVE) ID: CVE-2010-2648
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11900
http://secunia.com/advisories/41856
SuSE Security Announcement: SUSE-SR:2010:018 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.html
http://www.ubuntu.com/usn/USN-1006-1
http://www.vupen.com/english/advisories/2010/2722
http://www.vupen.com/english/advisories/2011/0552
Common Vulnerability Exposure (CVE) ID: CVE-2010-2647
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11884
Common Vulnerability Exposure (CVE) ID: CVE-2010-2649
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11974
Common Vulnerability Exposure (CVE) ID: CVE-2010-2651
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12028
Common Vulnerability Exposure (CVE) ID: CVE-2010-2650
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11438
Common Vulnerability Exposure (CVE) ID: CVE-2010-2652
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11118
CopyrightCopyright (C) 2010 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.