Test ID:	1.3.6.1.4.1.25623.1.0.804341
Category:	General
Title:	Google Chrome Multiple Vulnerabilities-02 (Mar 2014) - Linux
Summary:	Google Chrome is prone to multiple vulnerabilities.
Description:	Summary: Google Chrome is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - A use-after-free error within 'modules/speech/SpeechSynthesis.cpp' in blink. - Insufficient cross-origin restriction within 'GenerateFunction' function in blink. - A use-after-free error within 'DatabaseThread::cleanupDatabaseThread' function in web database in blink. - A use-after-free error within 'WebSocketDispatcherHost::SendOrDrop' function in web sockets implementation. - More unspecified errors within v8. Vulnerability Impact: Successful exploitation will allow remote attackers to disclose potentially sensitive information, conduct cross-site scripting attacks, conduct denial of service, bypass certain security restrictions and possibly unspecified other impacts. Affected Software/OS: Google Chrome version prior to 33.0.1750.149 on Linux. Solution: Upgrade to Google Chrome 33.0.1750.149 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-1700 Debian Security Information: DSA-2883 (Google Search) http://www.debian.org/security/2014/dsa-2883 http://security.gentoo.org/glsa/glsa-201408-16.xml http://www.securitytracker.com/id/1029914 SuSE Security Announcement: openSUSE-SU-2014:0501 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00008.html Common Vulnerability Exposure (CVE) ID: CVE-2014-1701 Common Vulnerability Exposure (CVE) ID: CVE-2014-1702 Common Vulnerability Exposure (CVE) ID: CVE-2014-1703 Common Vulnerability Exposure (CVE) ID: CVE-2014-1704
Copyright	Copyright (C) 2014 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.