Summary
This host is installed with Google Chrome and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow attackers to bypass certain security restrictions, execute arbitrary code in the context of the browser or cause a denial of service.
Impact Level: System/Application
Solution
Upgrade to the Google Chrome 23.0.1271.97 or later, For updates refer to http://www.google.com/chrome
Insight
- An use-after-free error exists in visibility events and in URL loader.
- Error exists within the instantiation of the Chromoting client plug-in, history navigation and AAC decoding.
- An integer overflow error exists within handling of PPAPI image buffers.
Affected
Google Chrome version prior to 23.0.1271.97 on Windows
References
Severity
Classification
-
CVE CVE-2012-5139, CVE-2012-5140, CVE-2012-5141, CVE-2012-5142, CVE-2012-5143, CVE-2012-5144 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat Remote Code Execution Vulnerability(Win)
- Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
- Adobe Air Remote Code Execution Vulnerability -June13 (Mac OS X)
- Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Mac OS X)
- Adobe Flash Media Server multiple vulnerabilities