Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.902050
Category:General
Title:Google Chrome Multiple Vulnerabilities (win)
Summary:This host is installed with Google Chrome Web Browser and is prone; to multiple vulnerabilities.
Description:Summary:
This host is installed with Google Chrome Web Browser and is prone
to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws are due to:

- Type confusion error with 'forms'

- An unspecified error in the handling of 'HTTP requests', which leads to
cross-site request forgery attacks.

- An error related to 'chrome://net-internals' and 'chrome://downloads',
which leads to cross-site scripting attacks

- Error related to local file references through 'developer tools'

- Pages that might load with privileges of the 'New Tab page'.

- An unspecified error in 'V8 bindings' causes a denial of service.

Vulnerability Impact:
Successful exploitation will allow attacker to obtain sensitive information,
execute arbitrary code in the context of the browser, bypass certain security restrictions.

Affected Software/OS:
Google Chrome version prior to 4.1.249.1059 on Windows.

Solution:
Upgrade to the version 9501.942.1.4 or later.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: BugTraq ID: 39603
Common Vulnerability Exposure (CVE) ID: CVE-2010-1502
http://www.securityfocus.com/bid/39603
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12041
http://secunia.com/advisories/39544
Common Vulnerability Exposure (CVE) ID: CVE-2010-1767
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039
http://osvdb.org/64002
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11140
http://secunia.com/advisories/41856
http://secunia.com/advisories/43068
SuSE Security Announcement: SUSE-SR:2011:002 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
http://www.ubuntu.com/usn/USN-1006-1
http://www.vupen.com/english/advisories/2010/2722
http://www.vupen.com/english/advisories/2011/0212
http://www.vupen.com/english/advisories/2011/0552
Common Vulnerability Exposure (CVE) ID: CVE-2010-1500
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11906
Common Vulnerability Exposure (CVE) ID: CVE-2010-1503
BugTraq ID: 39667
http://www.securityfocus.com/bid/39667
http://osvdb.org/63999
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11244
Common Vulnerability Exposure (CVE) ID: CVE-2010-1504
BugTraq ID: 39669
http://www.securityfocus.com/bid/39669
http://osvdb.org/63998
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11418
Common Vulnerability Exposure (CVE) ID: CVE-2010-1505
http://osvdb.org/63997
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11866
Common Vulnerability Exposure (CVE) ID: CVE-2010-1506
http://osvdb.org/63996
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11925
CopyrightCopyright (C) 2010 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.