Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10567
HistoryApr 28, 2015 - 12:00 a.m.

KLA10567 Denial of service vulnerability in Google Chrome

2015-04-2800:00:00
Kaspersky Lab
threats.kaspersky.com
32

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.021 Low

EPSS

Percentile

88.9%

JSON

Detect date:

04/28/2015

Severity:

Critical

Description:

Use-after-free and other vulnerabilities were found in Google Chrome. By exploiting these vulnerabilities malicious users can cause denial of service or conduct other unknown impacts. These vulnerabilities can be exploited remotely via an unknown vectors.

Affected products:

Google Chrome versions earlier than 42.0.2311.135

Solution:

Update to the latest version. File with name old_chrome can be still detected after update. It caused by Google Chrome update policy which does not remove old versions when installing updates. Try to contact vendor for further delete instructions or ignore such kind of alerts at your own risk.
Get Chrome

Original advisories:

Google blog entry

Impacts:

DoS

Related products:

Google Chrome

CVE-IDS:

CVE-2015-12437.5Critical
CVE-2015-12507.5Critical

Related

nessus 9
ubuntu 1
redhat 1
openvas 7
freebsd 1
osv 1
securityvulns 2
debian 2
mageia 1
archlinux 1
chrome 1
ubuntucve 2
cve 2
debiancve 2
prion 2
gentoo 1
nessus
nessus
RHEL 6 : chromium-browser (RHSA-2015:0921)
2015-05-01 00:00:00
Google Chrome < 42.0.2311.135 Multiple Vulnerabilities (Mac OS X)
2015-04-29 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (210f80b9-ede4-11e4-81c4-00262d5ed8ee)
2015-04-29 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2015-05-06 00:00:00
redhat
redhat
(RHSA-2015:0921) Important: chromium-browser security and bug fix update
2015-04-30 00:00:00
openvas
openvas
Google Chrome Multiple Vulnerabilities-01 May15 (Mac OS X)
2015-05-04 00:00:00
Google Chrome Multiple Vulnerabilities-01 May15 (Windows)
2015-05-04 00:00:00
Debian Security Advisory DSA 3242-1 (chromium-browser - security update)
2015-04-30 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-04-28 00:00:00
osv
osv
chromium-browser - security update
2015-04-30 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3242-1] chromium-browser security update
2015-05-05 00:00:00
Google Chrome / Chromium multiple security vulnerabilities
2015-05-25 00:00:00
debian
debian
[SECURITY] [DSA 3242-1] chromium-browser security update
2015-05-01 11:55:26
[SECURITY] [DSA 3242-1] chromium-browser security update
2015-05-01 11:55:26
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerabilities
2015-05-03 03:19:16
archlinux
archlinux
chromium: multiple issues
2015-04-29 00:00:00
chrome
chrome
Stable Channel Update
2015-04-28 00:00:00
ubuntucve
ubuntucve
CVE-2015-1243
2015-04-30 00:00:00
CVE-2015-1250
2015-04-30 00:00:00
cve
cve
CVE-2015-1243
2015-05-01 10:59:00
CVE-2015-1250
2015-05-01 10:59:00
debiancve
debiancve
CVE-2015-1243
2015-05-01 10:59:00
CVE-2015-1250
2015-05-01 10:59:00
prion
prion
Design/Logic Flaw
2015-05-01 10:59:00
Design/Logic Flaw
2015-05-01 10:59:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2015-06-23 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.021 Low

EPSS

Percentile

88.9%

JSON
Related for KLA10567
nessus9ubuntu1redhat1openvas7freebsd1osv1securityvulns2debian2mageia1archlinux1chrome1ubuntucve2cve2debiancve2prion2gentoo1