Summary
This host is installed with Google Chrome
and is prone to spoof vulnerability.
Impact
Successful exploitation will allow attackers
to conduct spoofing attacks.
Impact Level: Application
Solution
Upgrade to Google Chrome version 37.0.2062.124
or later, For updates refer to http://www.google.com/chrome
Insight
Flaw exists due to improper handling of
ASN.1 values while parsing RSA signature
Affected
Google Chrome before 37.0.2062.124 on Macosx
Detection
Get the installed version with the help of
detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-1568 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Acrobat Multiple Vulnerabilities -01 Jan 13 (Windows)
- Aastra IP Telephone Hardcoded Telnet Password Security Bypass Vulnerability
- Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
- Adobe Acrobat Multiple Vulnerabilities - 01 Jan14 (Windows)
- Adobe Acrobat Multiple Vulnerabilities - Windows