Summary
The host is running Google Chrome and is prone to multiple vulnerabilities.
Impact
Successful exploitation could allow the attackers to cause denial of service and possibly have unspecified other impact via unknown vectors.
Impact Level: Application
Solution
Upgrade to the Google Chrome 6.0.472.59 or later,
For updates refer to http://www.google.com/chrome
Insight
Multiple vulnerabilities are due to,
- A use-after-free error exists when using document APIs during parsing.
- A use-after-free error exists in the processing of SVG styles.
- A use-after-free error exists in the processing of nested SVG elements.
- A race condition exists in the console handling.
- An unspecified error exists in the pop-up blocking functionality.
- An unspecified error related to Geolocation can be exploited to corrupt memory.
- The application does not prompt for extension history access.
Affected
Google Chrome version prior to 6.0.472.59 on windows
References
Severity
Classification
-
CVE CVE-2010-1823, CVE-2010-1824, CVE-2010-1825, CVE-2010-3412, CVE-2010-3413, CVE-2010-3415, CVE-2010-3417 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities