Detections
Analytics
Google Chrome < 33.0.1750.146 Multiple Vulnerabilities
medium Nessus Network Monitor Plugin ID 8149
Synopsis
The remote host is running an outdated web browser that contains multiple vulnerabilities.Description
The Google Chrome browser detected on the remote system is older than version 33.0.1750.146, and is therefore vulnerable to the following issues:- A use-after-free issue related to svg images, which might be exploitable for arbitrary code execution (CVE-2013-6663)
- A use-after-free issue related to speech recognition, which might be exploitable for arbitrary code execution (CVE-2013-6664)
- Heap-based buffer-overflow vulnerability in software rendering, which may be exploitable for arbitrary code execution (CVE-2013-6665)
- Chrome allows requests in flash header request (CVE-2013-6666)
- Multiple unspecified issues and vulnerabilities in the V8 engine or general application (CVE-2013-6667, CVE-2013-6668)
Solution
Upgrade to Google Chrome 33.0.1750.146 or later.See Also
http://googlechromereleases.blogspot.ie/2014/03/stable-channel-update.html
Plugin Details
Severity: Medium
ID: 8149
Family: Web Clients
Published: 3/4/2014
Updated: 3/6/2019
Nessus ID: 72801
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5.9
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: cpe:/a:google:chrome
Patch Publication Date: 3/3/2014
Vulnerability Publication Date: 3/3/2014
Reference Information
CVE: CVE-2013-6663
BID: 65930