Description: | Summary: This host is installed with Google Chrome and is prone to multiple vulnerabilities.
Vulnerability Insight: The flaws are due to:
- Error in 'toAlphabetic' function in 'rendering/RenderListMarker.cpp' in WebCore in WebKit.
- Error in 'page/Geolocation.cpp' which does stop timers associated with geolocation upon deletion of a document.
- Memory corruption in 'font' handling.
- Error in 'editing/markup.cpp' which fails to validate input passed to 'innerHTML' property of textarea.
- Error in 'third_party/WebKit/WebCore/dom/Element.cpp' in 'Element::normalizeAttributes()' resulting in DOM mutation events being fired.
- 'Clipboard::DispatchObject' function which does not properly handle 'CBF_SMBITMAP objects' in a 'ViewHostMsg_ClipboardWriteObjectsAsync' message which lead to illegal memory accesses and arbitrary execution related to 'Type Confusion' issue.
- Error in 'rendering/FixedTableLayout.cpp' which leads to denial of service
- 'Cross-origin bypass' in DOM methods'
- Error in 'page/EventHandler.cpp' causes Cross-origin keystroke redirection.
Vulnerability Impact: Successful exploitation will allow remote attackers to cause a denial of service, cross-site-scripting and execution of arbitrary code.
Affected Software/OS: Google Chrome version prior to 5.0.375.70 on Windows.
Solution: Upgrade to Google Chrome version 5.0.375.70 or later.
CVSS Score: 10.0
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
|