فا

‫ Google Chrome Multiple Vulnerabilities

IRCAD2014063361
ID:IRCAD2014063361
Release Date: 2014-06-10
Criticality level: Highly critical
Software:
Google Chrome 35.x
 
Description:
Multiple vulnerabilities have been reported in Google Chrome, where one has an unknown impact and others can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's system.
1) The application bundles a vulnerable version of the Adobe Flash Player.
2) A use-after-free error exists in filesystem api.
3) An error within SPDY can be exploited to cause an out-of-bounds read access.
4) An error within clipboard can be exploited to cause a buffer overflow.
5) An error within media can be exploited to cause a heap-based buffer overflow.
Successful exploitation of vulnerabilities #2, #4, and #5 may allow execution of arbitrary code.
The vulnerabilities are reported in versions prior to 35.0.1916.153.
 
Solution:
Update to version 35.0.1916.153.
 
References:
 
Secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 21 خرداد 1393

امتیاز

امتیاز شما
تعداد امتیازها:0