Summary
The host is running Google Chrome and is prone to multiple vulnerabilities.
Impact
Successful exploitation could allow attackers to execute arbitrary code in the context of the browser, inject scripts, bypass certain security restrictions, or cause a denial-of-service condition.
Impact Level: System/Application
Solution
Upgrade to the Google Chrome 13.0.782.215 or later, For updates refer to http://www.google.com/chrome
Insight
Multiple flaws are due to,
- URL parsing error when located on the command line.
- Multiple use-after-free error exists within the handling of features like line boxes, counter nodes, custom fonts and text searching.
- A double free error exists in libxml when handling XPath expression.
- Memory corruption error when handling certain vertex data.
- An error related to empty origins allows attackers to violate the cross-origin policy.
- An integer overflow error in uniform arrays.
Affected
Google Chrome version prior to 13.0.782.215 on Windows.
References
Severity
Classification
-
CVE CVE-2011-2806, CVE-2011-2821, CVE-2011-2822, CVE-2011-2823, CVE-2011-2824, CVE-2011-2825, CVE-2011-2826, CVE-2011-2827, CVE-2011-2828, CVE-2011-2829 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities