The version of Google Chrome installed on the remote Mac OS X host is a version prior to 40.0.2214.91. It is, therefore, affected by vulnerabilities in the following components :
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(80950);
script_version("1.12");
script_cvs_date("Date: 2019/11/25");
script_cve_id(
"CVE-2014-7923",
"CVE-2014-7924",
"CVE-2014-7925",
"CVE-2014-7926",
"CVE-2014-7927",
"CVE-2014-7928",
"CVE-2014-7929",
"CVE-2014-7930",
"CVE-2014-7931",
"CVE-2014-7932",
"CVE-2014-7933",
"CVE-2014-7934",
"CVE-2014-7935",
"CVE-2014-7936",
"CVE-2014-7937",
"CVE-2014-7938",
"CVE-2014-7939",
"CVE-2014-7940",
"CVE-2014-7941",
"CVE-2014-7942",
"CVE-2014-7943",
"CVE-2014-7944",
"CVE-2014-7945",
"CVE-2014-7946",
"CVE-2014-7947",
"CVE-2014-7948",
"CVE-2015-1205",
"CVE-2015-1359",
"CVE-2015-1360"
);
script_bugtraq_id(72288, 73076, 73077);
script_name(english:"Google Chrome < 40.0.2214.91 Multiple Vulnerabilities (Mac OS X)");
script_summary(english:"Checks the version number of Google Chrome.");
script_set_attribute(attribute:"synopsis", value:
"The remote Mac OS X host contains a web browser that is affected by
multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The version of Google Chrome installed on the remote Mac OS X host is
a version prior to 40.0.2214.91. It is, therefore, affected by
vulnerabilities in the following components :
- AppCache
- DOM
- FFmpeg
- Fonts
- ICU
- IndexedDB
- PDFium
- Skia
- Speech
- UI
- V8
- Views
- WebAudio");
script_set_attribute(attribute:"see_also", value:"http://googlechromereleases.blogspot.com/2015/01/stable-update.html");
script_set_attribute(attribute:"solution", value:
"Upgrade to Google Chrome 40.0.2214.91 or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-1360");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/01/22");
script_set_attribute(attribute:"patch_publication_date", value:"2015/01/22");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/01/23");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:google:chrome");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"MacOS X Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("macosx_google_chrome_installed.nbin");
script_require_keys("MacOSX/Google Chrome/Installed");
exit(0);
}
include("google_chrome_version.inc");
get_kb_item_or_exit("MacOSX/Google Chrome/Installed");
google_chrome_check_version(fix:'40.0.2214.91', severity:SECURITY_HOLE, xss:FALSE);
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7923
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7924
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7925
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7926
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7927
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7928
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7929
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7930
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7931
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7932
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7933
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7934
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7935
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7936
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7937
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7938
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7939
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7940
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7941
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7942
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7943
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7944
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7945
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7946
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7947
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7948
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1205
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1359
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1360
googlechromereleases.blogspot.com/2015/01/stable-update.html