Google Chrome < 13.0.782.218 Out of Date CA List

medium Log Correlation Engine Plugin ID 800900

Synopsis

The remote host contains a web browser that uses an out of date certificate authority list.

Description

Versions of Google Chrome earlier than 13.0.782.218 use an out of date certificate authority list. Due to the issuance of several fraudulent SSL certificates, the certificate authority DigiNotar has been disabled in Google Chrome.

Solution

Upgrade to Google Chrome 13.0.782.218 or later.

See Also

googlechromereleases.blogspot.com/2011/08/stable-update.html

googleonlinesecurity.blogspot.com/2011/08/update-on-attempted-man-in-middle.html

codereview.chromium.org/7791032/diff/2001/net/base/x509_certificate.cc

Plugin Details

Severity: Medium

ID: 800900

Family: Web Clients

Published: 8/31/2011

Nessus ID: 56023

Vulnerability Information

Patch Publication Date: 8/30/2011

Vulnerability Publication Date: 8/29/2011