The version of Google Chrome installed on the remote host is prior to 45.0.2454.101 and is affected by multiple vulnerabilities :
- An unspecified DOM same origin policy bypass exists. This may allow a context-dependent attacker to bypass the same-origin policy. No further details have been provided by the vendor. (CVE-2015-1303)
- Google Chrome’s V8 version contains a flaw that is triggered when handling ‘Object.observe’ calls on access-checked objects. This may allow a context-dependent attacker to have an unspecified impact. (CVE-2015-1304)