Google Chrome Multiple Vulnerabilities - February 11(Linux) Network Vulnerability

Summary

The host is running Google Chrome and is prone to multiple vulnerabilities.

Impact

Successful exploitation could allow attackers to execute arbitrary code in the context of the browser or cause denial-of-service condition. Impact Level: Application

Solution

Upgrade to the Google Chrome 9.0.597.84 or later, For updates refer to http://www.google.com/chrome

Insight

The flaws are due to - Use-after-free error in image loading - Not properly restricting drag and drop operations - PDF event handler, which does not properly interact with print operations - Not properly handling a missing key in an extension - Not properly handling autofill profile merging - Browser crash with bad volume setting - Race condition in audio handling

Affected

Google Chrome version prior to 9.0.597.84

References

http://googlechromereleases.blogspot.com/2011/02/stable-channel-update.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-0777, CVE-2011-0778, CVE-2011-0779, CVE-2011-0780, CVE-2011-0781, CVE-2011-0783, CVE-2011-0784

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Google Chrome multiple vulnerabilities - February 11(Linux)

Take action and discover your vulnerabilities