Detections
Analytics
Google Chrome < 1.0.154.65 Remote Code Execution
medium Nessus Network Monitor Plugin ID 5026
Synopsis
The remote host contains a web browser that is vulnerable to multiple attack vectors.Description
The version of Google Chrome installed on the remote host is earlier than 1.0.154.65. Such versions are reportedly affected by a memory corruption issue. An attacker could exploit this flaw in order to run arbitrary code inside the Google Chrome sandbox.Solution
Upgrade to Google Chrome 1.0.154.65 or newer.See Also
http://googlechromereleases.blogspot.com/2009/05/stable-update-bug-fix.html
Plugin Details
Severity: Medium
ID: 5026
Family: Web Clients
Published: 8/18/2004
Updated: 3/6/2019
Nessus ID: 38791
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5.3
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: cpe:/a:google:chrome
Reference Information
CVE: CVE-2009-0945
BID: 34924