Summary
The host is running Google Chrome and is prone to multiple denial of service vulnerabilities.
Impact
Successful exploitation will allow an attacker to execute arbitrary code in the context of the user running the application. Failed attacks may cause denial of service conditions.
Impact Level: Application
Solution
Upgrade to the Google Chrome 11.0.696.68 or later, For updates refer to http://www.google.com/chrome
Insight
- Bad variable casts in Chromium WebKit glue allows remote attackers to cause a denial of service or possibly have unspecified other impact.
- Multiple integer overflows in the SVG Filters implementation in WebCore in WebKit allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
Affected
Google Chrome version prior to 11.0.696.68 on Windows
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2011-1799, CVE-2011-1800 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Apple Safari libxml Denial of Service Vulnerability
- Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 Feb14 (Linux)
- Adobe LiveCycle Designer Untrusted Search Path Vulnerability (Windows)
- Apple iTunes Tutorials Window Security Bypass Vulnerability (Windows)
- Adobe Reader 'file://' URL Information Disclosure Vulnerability Feb07 (Windows)