en

‫ Google Chrome Multiple Vulnerabilities

IRCAD2011061233
ID:IRCAD2011061233
Release Date: 2011-06-08
Criticality level: Highly critical
Software:
Google Chrome 11.x
Description:
Some vulnerabilities have been reported in Google Chrome, which can be exploited by malicious people to disclose potentially sensitive information, conduct injection attacks, bypass certain security restrictions, and potentially compromise a user's system.
1) A use-after-free error exists within the float handling.
2) A use-after-free error exists within the accessibility support.
3) An error related to CSS can be exploited to leak history information.
4) An unspecified error can be exploited to bypass the extensions permissions.
5) An error related to a stale pointer exists within the extension framework.
6) An error related to extensions can be exploited to inject script code into new tab pages.
7) A use-after-free error exists within the developer tools.
8) An unspecified error related to history deletion can be exploited to corrupt browser memory.
9) A use-after-free error exists within the image loader.
10) An unspecified error allows for "extension injection" into "chrome://" pages.
11) An error within v8 can be exploited to bypass the same origin restriction.
12) An error related to the DOM can be exploited to bypass the same origin restriction.
Solution:
Upgrade to version 12.0.742.91.
References:
Secunia:

The Wall

No comments
You need to sign in to comment