Lucene search

K
kasperskyKaspersky LabKLA10006
HistoryJun 10, 2014 - 12:00 a.m.

KLA10006 Multiple vulnerabilities in Google Chrome

2014-06-1000:00:00
Kaspersky Lab
threats.kaspersky.com
19

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.036 Low

EPSS

Percentile

91.4%

Detect date:

06/10/2014

Severity:

Critical

Description:

Multiple serious vulnerabilities have been found in Google Chrome 35.0.1916.114 and earlier. Malicious users can exploit these vulnerabilities to cause denial of service or other possible issues.

Affected products:

Google Chrome 35.0.1916.114 and earlier

Solution:

Update to the latest version. File with name old_chrome can be still detected after update. It caused by Google Chrome update policy which does not remove old versions when installing updates. Try to contact vendor for further delete instructions or ignore such kind of alerts at your own risk.
Google Chrome

Original advisories:

Google chrome blog entry

Impacts:

DoS

Related products:

Google Chrome

CVE-IDS:

CVE-2014-31567.5Critical
CVE-2014-31577.5Critical
CVE-2014-31547.5Critical
CVE-2014-31555.0Critical

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.036 Low

EPSS

Percentile

91.4%