KLA10636Multiple vulnerabilities in Google Chrome

2015-07-21T00:00:00
ID KLA10636
Type kaspersky
Reporter Kaspersky Lab
Modified 2018-10-12T00:00:00

Description

CVSS:

7.5

Detect date:

07/21/2015

Severity:

Critical

Description:

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause a denial of service or (and) obtain sensitive information via specially crafted JavaScript code, specially crafted web site, unspecified linear-time attack, crafted XML data, crafted PDF document and other unknown vectors.

Affected products:

Google Chrome versions earlier than 44.0.2403.89

Solution:

Update to the latest version. File with name old_chrome can be still detected after update. It caused by Google Chrome update policy which does not remove old versions when installing updates. Try to contact vendor for further delete instructions or ignore such kind of alerts at your own risk.

Original advisories:

Google Chrome blog post

Impacts:

ACE

Related products:

Google Chrome

CVE-IDS:

CVE-2015-1287
CVE-2015-1288
CVE-2015-1281
CVE-2015-1278
CVE-2015-1277
CVE-2015-1280
CVE-2015-1279
CVE-2015-1282
CVE-2015-1273
CVE-2015-1272
CVE-2015-1283
CVE-2015-1284
CVE-2015-1285
CVE-2015-1276
CVE-2015-1286
CVE-2015-1275
CVE-2015-1270
CVE-2015-1289
CVE-2015-1274
CVE-2015-1271