Detections
Analytics

Google Chrome < 46.0.2490.80 Multiple Vulnerabilities (Mac OS X)

critical Nessus Plugin ID 86599

Language:

Synopsis

The remote Mac OS X host contains a web browser that is affected by multiple vulnerabilities.

Description

The version of Google Chrome installed on the remote Mac OS X host is prior to 46.0.2490.80. It is, therefore, affected by multiple vulnerabilities :

 - Multiple type confusion errors exist that allow a remote attacker to execute arbitrary code. (CVE-2015-7645, CVE-2015-7647, CVE-2015-7648)

Solution

Upgrade to Google Chrome 46.0.2490.80 or later.

See Also

http://www.nessus.org/u?db041d42

https://helpx.adobe.com/security/products/flash-player/apsb15-27.html

Plugin Details

Severity: Critical

ID: 86599

File Name: macosx_google_chrome_46_0_2490_80.nasl

Version: 1.9

Type: local

Agent: macosx

Published: 10/26/2015

Updated: 3/8/2022

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.0

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2015-7648

Vulnerability Information

CPE: cpe:/a:google:chrome

Required KB Items: MacOSX/Google Chrome/Installed

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 10/22/2015

Vulnerability Publication Date: 10/16/2015

CISA Known Exploited Vulnerability Due Dates: 3/24/2022

Reference Information

CVE: CVE-2015-7645, CVE-2015-7647, CVE-2015-7648