Summary
This host is installed with Google Chrome and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow attackers to bypass certain security restrictions, execute arbitrary code in the context of the browser or cause a denial of service.
Impact Level: System/Application
Solution
Upgrade to the Google Chrome 23.0.1271.91 or later, For updates refer to http://www.google.com/chrome
Insight
- An out-of-bounds read error exists in Skia.
- A use-after-free error exists in SVG filters and in within printing.
- Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxmlier, allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document.
- A bad cast error exists within input element handling.
- Browser crash with chunked encoding.
Affected
Google Chrome version prior to 23.0.1271.91 on Linux
References
Severity
Classification
-
CVE CVE-2012-5130, CVE-2012-5132, CVE-2012-5133, CVE-2012-5134, CVE-2012-5135, CVE-2012-5136 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities