Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2022 and is owned by Tenable, Inc. or an Affiliate thereof.GOOGLE_CHROME_48_0_2564_82.NASL
HistoryJan 22, 2016 - 12:00 a.m.

Google Chrome < 48.0.2564.82 Multiple Vulnerabilities

2016-01-2200:00:00
This script is Copyright (C) 2016-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
JSON

The version of Google Chrome installed on the remote Windows host is prior to 48.0.2564.82. It is, therefore, affected by multiple vulnerabilities :

  • A unspecified vulnerability exists in Google V8 when handling compatible receiver checks hidden behind receptors. An attacker can exploit this to have an unspecified impact. No other details are available.
    (CVE-2016-1612)

  • A user-after-free error exists in PDFium due to improper invalidation of IPWL_FocusHandler and IPWL_Provider upon destruction. An attacker can exploit this to deference already freed memory, resulting in the execution of arbitrary code. (CVE-2016-1613)

  • An unspecified vulnerability exists in Blink that is related to the handling of bitmaps. An attacker can exploit this to access sensitive information. No other details are available. (CVE-2016-1614)

  • An unspecified vulnerability exists in omnibox that is related to origin confusion. An attacker can exploit this to have an unspecified impact. No other details are available. (CVE-2016-1615)

  • An unspecified vulnerability exists that allows an attacker to spoof a displayed URL. No other details are available. (CVE-2016-1616)

  • An unspecified vulnerability exists that is related to history sniffing with HSTS and CSP. No other details are available. (CVE-2016-1617)

  • A flaw exists in Blink due to the weak generation of random numbers by the ARC4-based random number generator. An attacker can exploit this to gain access to sensitive information. No other details are available. (CVE-2016-1618)

  • A out-of-bounds read error exists in PDFium in file fx_codec_jpx_opj.cpp in the sycc4{22,44}_to_rgb() functions. An attacker can exploit this to cause a denial of service by crashing the application linked using the library. (CVE-2016-1619)

  • Multiple vulnerabilities exist, the most serious of which allow an attacker to execute arbitrary code via a crafted web page. (CVE-2016-1620)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(88088);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/04/11");

  script_cve_id(
    "CVE-2016-1612",
    "CVE-2016-1613",
    "CVE-2016-1614",
    "CVE-2016-1615",
    "CVE-2016-1616",
    "CVE-2016-1617",
    "CVE-2016-1618",
    "CVE-2016-1619",
    "CVE-2016-1620"
  );

  script_name(english:"Google Chrome < 48.0.2564.82 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host contains a web browser that is affected by
multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Google Chrome installed on the remote Windows host is
prior to 48.0.2564.82. It is, therefore, affected by multiple
vulnerabilities :

  - A unspecified vulnerability exists in Google V8 when
    handling compatible receiver checks hidden behind
    receptors. An attacker can exploit this to have an
    unspecified impact. No other details are available.
    (CVE-2016-1612)

  - A user-after-free error exists in PDFium due to improper
    invalidation of IPWL_FocusHandler and IPWL_Provider upon
    destruction. An attacker can exploit this to deference
    already freed memory, resulting in the execution of
    arbitrary code. (CVE-2016-1613)

  - An unspecified vulnerability exists in Blink that is
    related to the handling of bitmaps. An attacker can
    exploit this to access sensitive information. No other
    details are available. (CVE-2016-1614)

  - An unspecified vulnerability exists in omnibox that is
    related to origin confusion. An attacker can exploit
    this to have an unspecified impact. No other details are
    available. (CVE-2016-1615)

  - An unspecified vulnerability exists that allows an
    attacker to spoof a displayed URL. No other details are
    available. (CVE-2016-1616)

  - An unspecified vulnerability exists that is related to
    history sniffing with HSTS and CSP. No other details
    are available. (CVE-2016-1617)

  - A flaw exists in Blink due to the weak generation of
    random numbers by the ARC4-based random number
    generator. An attacker can exploit this to gain
    access to sensitive information. No other details are
    available. (CVE-2016-1618)

  - A out-of-bounds read error exists in PDFium in file
    fx_codec_jpx_opj.cpp in the sycc4{22,44}_to_rgb()
    functions. An attacker can exploit this to cause a
    denial of service by crashing the application linked
    using the library. (CVE-2016-1619)

  - Multiple vulnerabilities exist, the most serious of
    which allow an attacker to execute arbitrary code via a
    crafted web page. (CVE-2016-1620)");
  # http://googlechromereleases.blogspot.com/2016/01/stable-channel-update_20.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?7f4ae8d4");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Google Chrome version 48.0.2564.82 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-1620");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/10/29");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/01/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/01/22");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:google:chrome");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2016-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("google_chrome_installed.nasl");
  script_require_keys("SMB/Google_Chrome/Installed");

  exit(0);
}

include("google_chrome_version.inc");

get_kb_item_or_exit("SMB/Google_Chrome/Installed");
installs = get_kb_list("SMB/Google_Chrome/*");

google_chrome_check_version(installs:installs, fix:'48.0.2564.82', severity:SECURITY_HOLE);
VendorProductVersionCPE
googlechromecpe:/a:google:chrome

Related

nessus 9
suse 3
archlinux 1
freebsd 1
openvas 10
mageia 2
chrome 1
debian 2
osv 1
kaspersky 1
redhat 1
ubuntu 1
ubuntucve 10
debiancve 10
prion 10
cve 10
redhatcve 1
zdt 1
gentoo 1
nessus
nessus
FreeBSD : chromium -- multiple vulnerabilities (371bbea9-3836-4832-9e70-e8e928727f8c)
2016-01-22 00:00:00
openSUSE Security Update : Chromium (openSUSE-2016-99)
2016-01-27 00:00:00
Google Chrome < 48.0.2564.82 Multiple Vulnerabilities (Mac OS X)
2016-01-22 00:00:00
suse
suse
Security update for Chromium (important)
2016-01-27 22:11:24
Security update for Chromium (important)
2016-01-26 18:13:18
Security update for Chromium (important)
2016-01-26 18:11:38
archlinux
archlinux
chromium: multiple issues
2016-01-25 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2016-01-20 00:00:00
openvas
openvas
openSUSE: Security Advisory for Chromium (openSUSE-SU-2016:0271-1)
2016-01-28 00:00:00
openSUSE: Security Advisory for Chromium (openSUSE-SU-2016:0250-1)
2016-01-27 00:00:00
Mageia: Security Advisory (MGASA-2016-0042)
2016-02-02 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2016-01-29 14:02:50
Updated chromium-browser-stable packages fix security vulnerability
2016-08-03 13:57:01
chrome
chrome
Stable Channel Update
2016-01-20 00:00:00
debian
debian
[SECURITY] [DSA 3456-1] chromium-browser security update
2016-01-27 12:58:20
[SECURITY] [DSA 3456-1] chromium-browser security update
2016-01-27 12:58:20
osv
osv
chromium-browser - security update
2016-01-27 00:00:00
kaspersky
kaspersky
KLA10745 Multiple vulnerabilities in Google Chrome
2016-01-20 00:00:00
redhat
redhat
(RHSA-2016:0072) Important: chromium-browser security update
2016-01-27 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2016-01-27 00:00:00
ubuntucve
ubuntucve
CVE-2016-1613
2016-01-25 00:00:00
CVE-2016-1617
2016-01-22 00:00:00
CVE-2016-1612
2016-01-22 00:00:00
debiancve
debiancve
CVE-2016-1613
2016-01-25 11:59:00
CVE-2016-1618
2016-01-25 11:59:00
CVE-2016-1612
2016-01-25 11:59:00
prion
prion
Design/Logic Flaw
2016-01-25 11:59:00
Design/Logic Flaw
2016-01-25 11:59:00
Design/Logic Flaw
2016-01-25 11:59:00
cve
cve
CVE-2016-1617
2016-01-25 11:59:00
CVE-2016-1613
2016-01-25 11:59:00
CVE-2016-1614
2016-01-25 11:59:00
redhatcve
redhatcve
CVE-2016-5137
2016-07-21 08:19:25
zdt
zdt
IBM QRadar SIEM - Unauthenticated Remote Code Execution Exploit
2018-07-11 00:00:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2016-03-12 00:00:00
JSON
Related for GOOGLE_CHROME_48_0_2564_82.NASL
nessus9suse3archlinux1freebsd1openvas10mageia2chrome1debian2osv1kaspersky1redhat1ubuntu1ubuntucve10debiancve10prion10cve10redhatcve1zdt1gentoo1