Summary
This host is installed with Google Chrome and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow attackers to bypass certain security restrictions, execute arbitrary code in the context of the browser or cause a denial of service.
Impact Level: System/Application
Solution
Upgrade to the Google Chrome 23.0.1271.97 or later, For updates refer to http://www.google.com/chrome
Insight
- An use-after-free error exists in visibility events and in URL loader.
- Error exists within the instantiation of the Chromoting client plug-in, history navigation and AAC decoding.
- An integer overflow error exists within handling of PPAPI image buffers.
Affected
Google Chrome version prior to 23.0.1271.97 on Mac OS X
References
Severity
Classification
-
CVE CVE-2012-5139, CVE-2012-5140, CVE-2012-5141, CVE-2012-5142, CVE-2012-5143, CVE-2012-5144 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Air Remote Code Execution Vulnerability -June13 (Mac OS X)
- Adobe Acrobat and Reader Multiple Vulnerabilities -July10 (Windows)
- Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Mac OS X)
- Adobe AIR Multiple Vulnerabilities(APSB14-24)-(Mac OS X)
- Adobe Air and Flash Player Multiple Vulnerabilities (Mac OS X)