Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.802837
Category:General
Title:Google Chrome Multiple Vulnerabilities-02 - April 12 (Mac OS X)
Summary:This host is installed with Google Chrome and is prone to multiple; vulnerabilities.
Description:Summary:
This host is installed with Google Chrome and is prone to multiple
vulnerabilities.

Vulnerability Insight:
The flaws are due to

- Unspecified errors in flash player, allows to corrupt memory in the
chrome interface.

- An out of bounds read error when handling skia clipping.

- Errors in the cross origin policy when handling iframe replacement and
parenting pop up windows.

- Multiple use after free errors when handling line boxes, v8 bindings,
HTMLMediaElement, SVG resources, media content, focus events and when
applying style commands.

- A read after free error in the script bindings.

Vulnerability Impact:
Successful exploitation could allow attackers to inject scripts, bypass
certain security restrictions, execute arbitrary code in the context of the
browser or cause a denial of service.

Affected Software/OS:
Google Chrome version prior to 18.0.1025.151 on Mac OS X

Solution:
Upgrade to the Google Chrome 18.0.1025.151 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: BugTraq ID: 52913
BugTraq ID: 52914
BugTraq ID: 52916
Common Vulnerability Exposure (CVE) ID: CVE-2011-3066
http://www.securityfocus.com/bid/52913
http://security.gentoo.org/glsa/glsa-201204-03.xml
http://osvdb.org/81036
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15453
http://www.securitytracker.com/id?1026892
http://secunia.com/advisories/48732
http://secunia.com/advisories/48749
Common Vulnerability Exposure (CVE) ID: CVE-2011-3067
http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html
http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html
http://osvdb.org/81037
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15342
XForce ISS Database: chrome-if-security-bypass(74627)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74627
Common Vulnerability Exposure (CVE) ID: CVE-2011-3068
http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html
http://osvdb.org/81038
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15285
XForce ISS Database: chrome-runin-code-execution(74628)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74628
Common Vulnerability Exposure (CVE) ID: CVE-2011-3069
http://osvdb.org/81039
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15310
XForce ISS Database: chrome-linebos-code-execution(74629)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74629
Common Vulnerability Exposure (CVE) ID: CVE-2011-3070
http://osvdb.org/81040
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15521
XForce ISS Database: chrome-v8bindings-code-execution(74630)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74630
Common Vulnerability Exposure (CVE) ID: CVE-2011-3071
http://osvdb.org/81041
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15317
XForce ISS Database: chrome-hme-code-execution(74631)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74631
Common Vulnerability Exposure (CVE) ID: CVE-2011-3072
http://osvdb.org/81042
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15480
XForce ISS Database: chrome-ppw-security-bypass(74632)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74632
Common Vulnerability Exposure (CVE) ID: CVE-2011-3073
http://osvdb.org/81043
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14576
XForce ISS Database: chrome-svgrh-code-execution(74633)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74633
Common Vulnerability Exposure (CVE) ID: CVE-2011-3074
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15513
XForce ISS Database: chrome-media-code-execution(74634)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74634
Common Vulnerability Exposure (CVE) ID: CVE-2011-3075
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15141
XForce ISS Database: chrome-style-code-execution(74635)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74635
Common Vulnerability Exposure (CVE) ID: CVE-2011-3076
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15172
XForce ISS Database: chrome-focus-code-execution(74636)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74636
Common Vulnerability Exposure (CVE) ID: CVE-2011-3077
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15343
XForce ISS Database: gc-focus-code-execution(74637)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74637
Common Vulnerability Exposure (CVE) ID: CVE-2012-0724
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15533
Common Vulnerability Exposure (CVE) ID: CVE-2012-0725
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14628
CopyrightCopyright (C) 2012 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.