Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.801825
Category:General
Title:Google Chrome multiple vulnerabilities - Jan11 (Windows)
Summary:The host is installed with Google Chrome and is prone to multiple; vulnerabilities.
Description:Summary:
The host is installed with Google Chrome and is prone to multiple
vulnerabilities.

Vulnerability Insight:
Multiple flaws are due to:

- An unspecified error exists within the extensions notification handling.

- An unspecified error exists when handling pointers within node iteration.

- An unspecified error exists when printing multi-page PDF files.

- An error when handling CSS and canvas can be exploited to reference a stale
pointer.

- An error when handling CSS and cursors can be exploited to reference a stale
pointer.

- A use-after-free error when handling PDF pages can be exploited to reference
freed memory.

- An error due to an out-of-memory condition when processing PDF files can be
exploited to cause stack corruption.

- An error when handling mismatched video frame sizes can be exploited to
reference invalid memory.

- An error when handling SVG '' elements can be exploited to reference
a stale pointer.

- An error when handling rogue extensions can be exploited to reference an
uninitialised pointer.

- An error within the Vorbis decoder can be exploited to cause a buffer
overflow.

- An error within PDF shading can be exploited to cause a buffer overflow.

- An error when handling anchors may result in an incorrect type cast.

- An error when handling videos may result in an incorrect type cast.

- An error after removal of a DOM node may result in a stale rendering node.

- An error when handling speech can be exploited to reference a stale pointer.

Vulnerability Impact:
Successful exploitation could allow attackers to cause a denial of service.

Affected Software/OS:
Google Chrome version prior to 8.0.552.237 on windows

Solution:
Upgrade to the Google Chrome 8.0.552.237 or later.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2011-0470
BugTraq ID: 45788
http://www.securityfocus.com/bid/45788
http://osvdb.org/70453
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14366
http://secunia.com/advisories/42951
XForce ISS Database: unspecified(64661)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64661
Common Vulnerability Exposure (CVE) ID: CVE-2011-0471
http://osvdb.org/70454
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13710
XForce ISS Database: chrome-iteration-unspecified(64662)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64662
Common Vulnerability Exposure (CVE) ID: CVE-2011-0472
http://osvdb.org/70455
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14622
XForce ISS Database: chrome-pdf-files-unspecified(64663)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64663
Common Vulnerability Exposure (CVE) ID: CVE-2011-0473
http://osvdb.org/70456
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14460
XForce ISS Database: chrome-css-canvas-unspecified(64664)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64664
Common Vulnerability Exposure (CVE) ID: CVE-2011-0474
Debian Security Information: DSA-2188 (Google Search)
http://www.debian.org/security/2011/dsa-2188
http://osvdb.org/70457
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14443
XForce ISS Database: chrome-css-cursors-unspecified(64665)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64665
Common Vulnerability Exposure (CVE) ID: CVE-2011-0475
http://osvdb.org/70458
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14606
XForce ISS Database: chrome-pdf-pages-code-execution(64666)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64666
Common Vulnerability Exposure (CVE) ID: CVE-2011-0476
http://osvdb.org/70459
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14102
XForce ISS Database: chrome-pdf-files-ce(64667)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64667
Common Vulnerability Exposure (CVE) ID: CVE-2011-0477
http://osvdb.org/70460
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14390
XForce ISS Database: chrome-video-frame-code-execution(64668)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64668
Common Vulnerability Exposure (CVE) ID: CVE-2011-0478
http://osvdb.org/70461
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14191
XForce ISS Database: chrome-use-code-execution(64669)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64669
Common Vulnerability Exposure (CVE) ID: CVE-2011-0479
http://osvdb.org/70462
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14746
XForce ISS Database: chrome-rouge-code-execution(64670)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64670
Common Vulnerability Exposure (CVE) ID: CVE-2011-0480
Debian Security Information: DSA-2306 (Google Search)
http://www.debian.org/security/2011/dsa-2306
http://www.mandriva.com/security/advisories?name=MDVSA-2011:061
http://article.gmane.org/gmane.comp.video.ffmpeg.devel/122703
http://osvdb.org/70463
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14380
http://www.ubuntu.com/usn/usn-1104-1/
XForce ISS Database: chrome-vorbis-bo(64671)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64671
Common Vulnerability Exposure (CVE) ID: CVE-2011-0481
http://osvdb.org/70464
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14418
XForce ISS Database: chrome-pdf-shading-bo(64672)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64672
Common Vulnerability Exposure (CVE) ID: CVE-2011-0482
http://osvdb.org/70465
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14662
SuSE Security Announcement: SUSE-SR:2011:009 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html
XForce ISS Database: chrome-anchors-dos(64673)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64673
Common Vulnerability Exposure (CVE) ID: CVE-2011-0483
http://osvdb.org/70466
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14706
XForce ISS Database: chrome-type-cast-dos(64674)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64674
Common Vulnerability Exposure (CVE) ID: CVE-2011-0484
http://osvdb.org/70467
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14131
XForce ISS Database: chrome-dom-node-dos(64675)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64675
Common Vulnerability Exposure (CVE) ID: CVE-2011-0485
http://osvdb.org/70468
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14381
XForce ISS Database: chrome-speech-code-exec(64676)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64676
CopyrightCopyright (C) 2011 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.