Summary
The host is installed with Google Chrome and is prone to remote code execution vulnerability.
Impact
Successful exploitation could allow attackers to execute arbitrary code, cause a denial of service.
Impact Level: System/Application
Solution
Upgrade to the Google Chrome 15.0.874.121 or later, For updates refer to http://www.google.com/chrome
Insight
The flaw is due to an out-of-bounds write operation error in V8 (JavaScript engine) causing memory corruption.
Affected
Google Chrome version prior to 15.0.874.121 on Windows
References
Severity
Classification
-
CVE CVE-2011-3900 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
- Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)
- Adobe Air Code Execution and DoS Vulnerabilities (Windows)
- Adobe Flash Media Server Multiple Remote Security Vulnerabilities
- Adobe Flash Player 9.0.115.0 and earlier vulnerability (Lin)