The host is installed with Google Chrome and is prone to multiple vulnerabilities.

Successful exploitation will allow attackers to execute arbitrary code, bypass security restrictions, disclose potentially sensitive data, or cause denial of service condition.

Upgrade to the Google Chrome 28.0.1500.71 or later, For updates refer to http://www.google.com/chrome

Multiple flaws due to, - Error exists when setting up sign-in and sync operations. - An out-of-bounds read error exists within text handling. - 'parser.c in libxml2' has out-of-bounds read error, related to the lack of checks for the XML_PARSER_EOF state. - 'browser/extensions/api/tabs/tabs_api.cc' does not enforce restrictions on the capture of screenshots by extensions. - An out-of-bounds read error exists in SVG handling. - Unspecified error related to GL textures, only when an Nvidia GPU is used. - Unspecified use-after-free vulnerabilities. - An out-of-bounds read error exists within JPEG2000 handling. - Unspecified error exists within sync of NPAPI extension component. - Does not properly prevent pop. - HTTPS implementation does not ensure how headers are terminated.

Google Chrome version prior to 28.0.1500.71 on MAC OS X.

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

• http://googlechromereleases.blogspot.in/2013/07/stable-channel-update.html
• http://secunia.com/advisories/54017
• http://www.osvdb.org/95089

---

Updated on 2015-03-25