Google Chrome Multiple Vulnerabilities-01 Oct12 (Windows) Network Vulnerability

Summary

This host is installed with Google Chrome and is prone to multiple vulnerabilities.

Impact

Successful exploitation could allow the attackers to execute arbitrary code with the privileges of a local user and cause a denial of service. Impact Level: System/Application

Solution

Upgrade to the Google Chrome 22.0.1229.92 or later, For updates refer to http://www.google.com/chrome

Insight

Multiple flaws are due to - A race condition error exists related to audio device handling. - An error exists related to Skia text rendering, ICU regex, compositor handling and plug-in crash monitoring for Pepper plug-ins.

Affected

Google Chrome version prior to 22.0.1229.92 on Windows

References

http://googlechromereleases.blogspot.in/2012/10/stable-channel-update.html
http://osvdb.org/show/osvdb/86123
http://secunia.com/advisories/50872/
https://www.securelist.com/en/advisories/50872

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-2900, CVE-2012-5108, CVE-2012-5109, CVE-2012-5110, CVE-2012-5111

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Linux)
Adobe Acrobat and Reader PDF Handling Multiple Vulnerabilities (Linux)
Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Windows)
Adobe AIR Multiple Vulnerabilities -01 Feb13 (Linux)
Adobe AIR Multiple Vulnerabilities-01 Dec13 (Mac OS X)

Take action and discover your vulnerabilities