Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.901197
Category:General
Title:Google Chrome multiple vulnerabilities - March 11 (Windows)
Summary:The host is running Google Chrome and is prone to multiple; vulnerabilities.
Description:Summary:
The host is running Google Chrome and is prone to multiple
vulnerabilities.

Vulnerability Insight:
- A buffer overflow error in base string handling.

- An use-after-free error in the frame-loader implementation.

- An Use-after-free error in the HTMLCollection implementation.

- An error in the processing of CSS which leaves stale pointers behind.

- An unspecified error related to broken node-hierarchy which leads to DOM
tree corruption.

- An error in the processing of SVG text which leaves stale pointers behind.

Vulnerability Impact:
Successful exploitation could allow attackers to execute arbitrary code in
the context of the browser or cause denial-of-service condition.

Affected Software/OS:
Google Chrome version prior to 10.0.648.204 on Windows

Solution:
Upgrade to the Google Chrome 10.0.648.204 or later.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: BugTraq ID: 47029
Common Vulnerability Exposure (CVE) ID: CVE-2011-1291
http://www.securityfocus.com/bid/47029
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14544
http://secunia.com/advisories/43859
http://www.vupen.com/english/advisories/2011/0765
XForce ISS Database: google-chrome-base-string-bo(66298)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66298
Common Vulnerability Exposure (CVE) ID: CVE-2011-1292
Debian Security Information: DSA-2245 (Google Search)
http://www.debian.org/security/2011/dsa-2245
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13876
XForce ISS Database: google-chrome-frame-code-exec(66299)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66299
Common Vulnerability Exposure (CVE) ID: CVE-2011-1293
http://lists.apple.com/archives/security-announce/2011//Jul/msg00002.html
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14367
XForce ISS Database: google-chrome-html-code-exec(66300)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66300
Common Vulnerability Exposure (CVE) ID: CVE-2011-1294
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14376
XForce ISS Database: google-chrome-stale-code-exec(66301)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66301
Common Vulnerability Exposure (CVE) ID: CVE-2011-1295
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14269
XForce ISS Database: google-chrome-node-code-exec(66302)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66302
Common Vulnerability Exposure (CVE) ID: CVE-2011-1296
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14636
XForce ISS Database: google-chrome-svgtext-code-exec(66303)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66303
CopyrightCopyright (C) 2011 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.