Google Chrome < 4.1.249.1036 Multiple Vulnerabilities

high Nessus Plugin ID 45086

Synopsis

The remote host contains a web browser that is affected by multiple vulnerabilities.

Description

The version of Google Chrome installed on the remote host is prior to 4.1.249.1036. It is, therefore, affected by multiple vulnerabilities :

- Multiple race conditions and pointer errors in the sandbox infrastructure. (Issue #28804, #31880)

- An error relating to persisted metadata such as Web Databases and STS. (Issue #20801, #33445)

- HTTP headers are processed before the SafeBrowsing check. (Issue #33572)

- A memory error with malformed SVG. (Issue #34978)

- Multiple integer overflows in WebKit JavaScript objects.
(Issue #35724)

- The HTTP basic auth dialog truncates URLs.
(Issue #36772)

- It is possible to bypass the download warning dialog.
(Issue #37007)

- An unspecified cross-origin bypass vulnerability.
(Issue #37383)

- A memory error relating to empty SVG elements. Note that this only affects Chrome Beta versions.
(Issue #37061)

Solution

Upgrade to Google Chrome 4.1.249.1036 or later.

See Also

http://www.nessus.org/u?0ec0e092

Plugin Details

Severity: High

ID: 45086

File Name: google_chrome_4_1_249_1036.nasl

Version: 1.20

Type: local

Agent: windows

Family: Windows

Published: 3/18/2010

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:google:chrome

Required KB Items: SMB/Google_Chrome/Installed

Exploit Ease: No known exploits are available

Patch Publication Date: 3/17/2010

Vulnerability Publication Date: 3/17/2010

Reference Information

CVE: CVE-2010-1229, CVE-2010-1230, CVE-2010-1231, CVE-2010-1232, CVE-2010-1233, CVE-2010-1234, CVE-2010-1235, CVE-2010-1236, CVE-2010-1237

BID: 38829, 73629, 73673

SECUNIA: 39029