Test ID:	1.3.6.1.4.1.25623.1.0.801473
Category:	General
Title:	Google Chrome Multiple Vulnerabilities (Oct 2010) - Windows
Summary:	Google Chrome is prone to multiple vulnerabilities.
Description:	Summary: Google Chrome is prone to multiple vulnerabilities. Vulnerability Insight: The flaws are due to - An unknown error related to 'autofill/autocomplete' profile spamming. - Memory corruption error when processing malformed forms, which could be exploited to execute arbitrary code. - A memory corruption error related to form 'autofill'. - An error when handling page unloads, which could allow URL spoofing attacks. - An unspecified error which could allow malicious web sites to bypass the pop-up blocker. - An error related to shutdown with 'Web Sockets'. - A memory corruption error when processing animated 'GIFs'. - Error in Stale elements in an element map. Vulnerability Impact: Successful exploitation could allow the attackers to execute arbitrary code in the context of the browser, cause denial-of-service conditions, carry out spoofing attacks, gain access to sensitive information, and bypass intended security restrictions. Affected Software/OS: Google Chrome version prior to 7.0.517.41 Solution: Upgrade to the Google Chrome 7.0.517.41 or later. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4033 BugTraq ID: 44241 http://www.securityfocus.com/bid/44241 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7159 http://secunia.com/advisories/41888 http://www.vupen.com/english/advisories/2010/2731 Common Vulnerability Exposure (CVE) ID: CVE-2010-4035 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6867 Common Vulnerability Exposure (CVE) ID: CVE-2010-4034 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6775 Common Vulnerability Exposure (CVE) ID: CVE-2010-4036 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7627 Common Vulnerability Exposure (CVE) ID: CVE-2010-4037 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6790 Common Vulnerability Exposure (CVE) ID: CVE-2010-4038 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13930 Common Vulnerability Exposure (CVE) ID: CVE-2010-4040 Debian Security Information: DSA-2188 (Google Search) http://www.debian.org/security/2011/dsa-2188 http://www.mandriva.com/security/advisories?name=MDVSA-2011:039 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7646 http://secunia.com/advisories/43068 SuSE Security Announcement: SUSE-SR:2011:002 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html http://www.vupen.com/english/advisories/2011/0212 http://www.vupen.com/english/advisories/2011/0552 Common Vulnerability Exposure (CVE) ID: CVE-2010-4042 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6654 SuSE Security Announcement: SUSE-SR:2011:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html
Copyright	Copyright (C) 2010 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.