فا

‫ Google Chrome Multiple Vulnerabilities

IRCAD2014033190
 
 
ID: IRCAD2014033190
Release Date: 2014-03-11
Criticality level: Highly critical
 
Software:

Google Chrome 33.x

 
Description:

Multiple vulnerabilities have been reported in Google Chrome, where multiple have an unknown impact and the others can be exploited by malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's system.

1) A use-after-free error exists within speech.

2) An unspecified error within events can be exploited to conduct cross-site scripting attacks.

3) A use-after-free error exists within web database.

4) A use-after-free error exists within web sockets.

5) Multiple unspecified errors exist within v8.

6) The application bundles a vulnerable version of Adobe Flash Player.

Successful exploitation of the vulnerabilities #1 and #3 through #5 may allow execution of arbitrary code.

The vulnerabilities are reported in versions prior to 33.0.1750.149.

 
Solution

Update to version 33.0.1750.149.

 
References:
Secunia:
http://secunia.com/advisories/57164/

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 27 اسفند 1392

امتیاز

امتیاز شما
تعداد امتیازها: 0