Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2011-2022 Tenable Network Security, Inc.GOOGLE_CHROME_15_0_874_102.NASL
HistoryOct 26, 2011 - 12:00 a.m.

Google Chrome < 15.0.874.102 Multiple Vulnerabilities

2011-10-2600:00:00
This script is Copyright (C) 2011-2022 Tenable Network Security, Inc.
www.tenable.com
11
JSON

The version of Google Chrome installed on the remote host is earlier than 15.0.874.102. It therefore is potentially affected by the following vulnerabilities :

  • Several URL bar spoofing errors exist related to history handling and drag-and-drop of URLs.
    (CVE-2011-2845, CVE-2011-3875)

  • Whitespace is stripped from the end of download filenames. (CVE-2011-3876)

  • A cross-site scripting issue exists related to the ‘appcache’ internals page. (CVE-2011-3877)

  • A race condition exists related to working process initialization. (CVE-2011-3878)

  • An error exists related to redirection to ‘chrome scheme’ URIs. (CVE-2011-3879)

  • Unspecified special characters may be used as delimiters in HTTP headers. (CVE-2011-3880)

  • Several cross-origin policy violation issues exist.
    (CVE-2011-3881)

  • Several use-after-free errors exist related to media buffer handling, counter handling, stale styles, plugins and editing, and video source handling.
    (CVE-2011-3882, CVE-2011-3883, CVE-2011-3885, CVE-2011-3888, CVE-2011-3890)

  • Timing issues exist related to DOM traversal.
    (CVE-2011-3884)

  • An out-of-bounds write error exists in the V8 JavaScript engine. (CVE-2011-3886)

  • Cookie theft is possible via JavaScript URIs.
    (CVE-2011-3887)

  • A heap overflow issue exists related to Web Audio.
    (CVE-2011-3889)

  • Functions internal to the V8 JavaScript engine are exposed. (CVE-2011-3891)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(56650);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/04/11");

  script_cve_id(
    "CVE-2011-2845",
    "CVE-2011-3875",
    "CVE-2011-3876",
    "CVE-2011-3877",
    "CVE-2011-3878",
    "CVE-2011-3879",
    "CVE-2011-3880",
    "CVE-2011-3881",
    "CVE-2011-3882",
    "CVE-2011-3883",
    "CVE-2011-3884",
    "CVE-2011-3885",
    "CVE-2011-3886",
    "CVE-2011-3887",
    "CVE-2011-3888",
    "CVE-2011-3889",
    "CVE-2011-3890",
    "CVE-2011-3891"
  );
  script_bugtraq_id(50360);

  script_name(english:"Google Chrome < 15.0.874.102 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"The remote host contains a web browser that is affected by multiple
vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Google Chrome installed on the remote host is earlier
than 15.0.874.102.  It therefore is potentially affected by the
following vulnerabilities :

  - Several URL bar spoofing errors exist related to
    history handling and drag-and-drop of URLs.
    (CVE-2011-2845, CVE-2011-3875)

  - Whitespace is stripped from the end of download
    filenames. (CVE-2011-3876)

  - A cross-site scripting issue exists related to the
    'appcache' internals page. (CVE-2011-3877)

  - A race condition exists related to working process
    initialization. (CVE-2011-3878)

  - An error exists related to redirection to 'chrome
    scheme' URIs. (CVE-2011-3879)

  - Unspecified special characters may be used as
    delimiters in HTTP headers. (CVE-2011-3880)

  - Several cross-origin policy violation issues exist.
    (CVE-2011-3881)

  - Several use-after-free errors exist related to media
    buffer handling, counter handling, stale styles,
    plugins and editing, and video source handling.
    (CVE-2011-3882, CVE-2011-3883, CVE-2011-3885,
    CVE-2011-3888, CVE-2011-3890)

  - Timing issues exist related to DOM traversal.
    (CVE-2011-3884)

  - An out-of-bounds write error exists in the V8
    JavaScript engine. (CVE-2011-3886)

  - Cookie theft is possible via JavaScript URIs.
    (CVE-2011-3887)

  - A heap overflow issue exists related to Web Audio.
    (CVE-2011-3889)

  - Functions internal to the V8 JavaScript engine are
    exposed. (CVE-2011-3891)");
  # https://chromereleases.googleblog.com/2011/10/chrome-stable-release.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?c70534ff");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Google Chrome 15.0.874.102 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);

  script_set_attribute(attribute:"vuln_publication_date", value:"2011/10/25");
  script_set_attribute(attribute:"patch_publication_date", value:"2011/10/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/10/26");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:google:chrome");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2011-2022 Tenable Network Security, Inc.");

  script_dependencies("google_chrome_installed.nasl");
  script_require_keys("SMB/Google_Chrome/Installed");

  exit(0);
}

include("google_chrome_version.inc");

get_kb_item_or_exit("SMB/Google_Chrome/Installed");

installs = get_kb_list("SMB/Google_Chrome/*");
google_chrome_check_version(installs:installs, fix:'15.0.874.102', xss:TRUE, severity:SECURITY_HOLE);
VendorProductVersionCPE
googlechromecpe:/a:google:chrome

References

Related

openvas 18
threatpost 1
chrome 1
nessus 16
ubuntucve 18
gentoo 1
cve 18
prion 18
debiancve 18
freebsd 1
securityvulns 4
openvas
openvas
Google Chrome Multiple Vulnerabilities - October11 (Windows)
2011-10-28 00:00:00
Google Chrome Multiple Vulnerabilities (Oct 2011) - Windows
2011-10-28 00:00:00
Google Chrome multiple vulnerabilities - October11 (Linux)
2011-10-28 00:00:00
threatpost
threatpost
Google Fixes 27 Bugs in Chrome 15
2011-10-25 17:51:34
chrome
chrome
Chrome Stable Release
2011-10-25 00:00:00
nessus
nessus
Google Chrome < 15.0.874.102 Multiple Vulnerabilities
2011-10-26 00:00:00
Google Chrome < 15.0.874.102 Multiple Vulnerabilities
2011-10-26 00:00:00
GLSA-201111-01 : Chromium, V8: Multiple vulnerabilities
2011-11-02 00:00:00
ubuntucve
ubuntucve
CVE-2011-3879
2011-10-25 00:00:00
CVE-2011-3891
2011-10-25 00:00:00
CVE-2011-3884
2011-10-25 00:00:00
gentoo
gentoo
Chromium, V8: Multiple vulnerabilities
2011-11-01 00:00:00
cve
cve
CVE-2011-3891
2011-10-25 19:55:00
CVE-2011-3890
2011-10-25 19:55:00
CVE-2011-3884
2011-10-25 19:55:00
prion
prion
Design/Logic Flaw
2011-10-25 19:55:00
Out-of-bounds
2011-10-25 19:55:00
Design/Logic Flaw
2011-10-25 19:55:00
debiancve
debiancve
CVE-2011-3883
2011-10-25 19:55:00
CVE-2011-3891
2011-10-25 19:55:00
CVE-2011-3884
2011-10-25 19:55:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2010-10-19 00:00:00
securityvulns
securityvulns
Apple WebKit &#40;iTunes, iPhone, Safari, Google Chrome&#41; multiple security vulnerabilities
2012-08-27 00:00:00
APPLE-SA-2012-03-07-2 iOS 5.1 Software Update
2012-03-09 00:00:00
APPLE-SA-2012-03-07-1 iTunes 10.6
2012-03-09 00:00:00
JSON
Related for GOOGLE_CHROME_15_0_874_102.NASL
openvas18threatpost1chrome1nessus16ubuntucve18gentoo1cve18prion18debiancve18freebsd1securityvulns4