Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.MACOSX_GOOGLE_CHROME_52_0_2743_116.NASL
HistoryAug 08, 2016 - 12:00 a.m.

Google Chrome < 52.0.2743.116 Multiple Vulnerabilities (Mac OS X)

2016-08-0800:00:00
This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17
JSON

The version of Google Chrome installed on the remote Mac OS X host is prior to 52.0.2743.116. It is, therefore, affected by multiple vulnerabilities :

  • An overflow condition exists in PDFium due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this to cause a heap-based buffer overflow, resulting in a denial of service condition or the execution of arbitrary code.
    (CVE-2016-5139)

  • An overflow condition exists in OpenJPEG due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this to cause a heap-based buffer overflow, resulting in a denial of service condition or the execution of arbitrary code.
    (CVE-2016-5140)

  • A flaw exists that is triggered when nested message loops access documents without generating a notification. An attacker can exploit this to spoof the address bar. (CVE-2016-5141)

  • A use-after-free error exists that allows an attacker to dereference already freed memory, resulting in the execution of arbitrary code. (CVE-2016-5142)

  • A flaw exists in the sanitizeRemoteFrontendUrl() function in devtools.js due to a failure to properly sanitize input parameters. An attacker can exploit this to have an unspecified impact. (CVE-2016-5143)

  • A flaw exists in the loadScriptsPromise() function in Runtime.js due to a failure to properly sanitize input parameters. An attacker can exploit this to have an unspecified impact. (CVE-2016-5144)

  • A flaw exists due to improper handling of specially crafted images. An attacker can exploit this to bypass the same-origin policy. (CVE-2016-5145)

  • Multiple unspecified high and medium severity vulnerabilities exist, including an overflow condition in WebRTC due to improper validation user-supplied input when handling RTP packets. An attacker can exploit this to cause a denial of service condition or the execution of arbitrary code. (CVE-2016-5146)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(92792);
  script_version("1.7");
  script_cvs_date("Date: 2019/11/14");

  script_cve_id(
    "CVE-2016-5139",
    "CVE-2016-5140",
    "CVE-2016-5141",
    "CVE-2016-5142",
    "CVE-2016-5143",
    "CVE-2016-5144",
    "CVE-2016-5145",
    "CVE-2016-5146"
  );
  script_bugtraq_id(92276);

  script_name(english:"Google Chrome < 52.0.2743.116 Multiple Vulnerabilities (Mac OS X)");
  script_summary(english:"Checks the version of Google Chrome.");

  script_set_attribute(attribute:"synopsis", value:
"A web browser installed on the remote Mac OS X host is affected by
multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Google Chrome installed on the remote Mac OS X host is
prior to 52.0.2743.116. It is, therefore, affected by multiple
vulnerabilities :

  - An overflow condition exists in PDFium due to improper
    validation of user-supplied input. An unauthenticated,
    remote attacker can exploit this to cause a heap-based
    buffer overflow, resulting in a denial of service 
    condition or the execution of arbitrary code.
    (CVE-2016-5139)

  - An overflow condition exists in OpenJPEG due to improper
    validation of user-supplied input. An unauthenticated,
    remote attacker can exploit this to cause a heap-based
    buffer overflow, resulting in a denial of service 
    condition or the execution of arbitrary code.
    (CVE-2016-5140)

  - A flaw exists that is triggered when nested message
    loops access documents without generating a
    notification. An attacker can exploit this to spoof the
    address bar. (CVE-2016-5141)

  - A use-after-free error exists that allows an attacker to
    dereference already freed memory, resulting in the
    execution of arbitrary code. (CVE-2016-5142)

  - A flaw exists in the sanitizeRemoteFrontendUrl()
    function in devtools.js due to a failure to properly
    sanitize input parameters. An attacker can exploit this
    to have an unspecified impact. (CVE-2016-5143)

  - A flaw exists in the loadScriptsPromise() function in
    Runtime.js due to a failure to properly sanitize input
    parameters. An attacker can exploit this to have an
    unspecified impact. (CVE-2016-5144)

  - A flaw exists due to improper handling of specially
    crafted images. An attacker can exploit this to bypass
    the same-origin policy. (CVE-2016-5145)

  - Multiple unspecified high and medium severity
    vulnerabilities exist, including an overflow condition
    in WebRTC due to improper validation user-supplied input
    when handling RTP packets. An attacker can exploit this
    to cause a denial of service condition or the execution
    of arbitrary code. (CVE-2016-5146)

Note that Nessus has not tested for these issues but has instead 
relied only on the application's self-reported version number.");
  # https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?81b23127");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Google Chrome version 52.0.2743.116 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-5146");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/06/20");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/08/03");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/08/08");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:google:chrome");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("macosx_google_chrome_installed.nbin");
  script_require_keys("MacOSX/Google Chrome/Installed");

  exit(0);
}

include("google_chrome_version.inc");

get_kb_item_or_exit("MacOSX/Google Chrome/Installed");

google_chrome_check_version(fix:'52.0.2743.116', severity:SECURITY_HOLE);
VendorProductVersionCPE
googlechromecpe:/a:google:chrome

Related

nessus 25
osv 2
mageia 2
suse 2
openvas 16
redhat 3
freebsd 1
archlinux 1
chrome 1
debian 3
kaspersky 1
fedora 2
debiancve 8
redhatcve 8
cve 8
ubuntucve 8
prion 8
ubuntu 1
veracode 1
gentoo 1
oraclelinux 2
centos 2
ibm 1
amazon 1
nessus
nessus
RHEL 6 : chromium-browser (RHSA-2016:1580)
2016-08-09 00:00:00
Google Chrome < 52.0.2743.116 Multiple Vulnerabilities
2016-08-08 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (958b9cee-79da-11e6-bf75-3065ec8fd3ec)
2016-09-15 00:00:00
osv
osv
chromium-browser - security update
2016-08-09 00:00:00
openjpeg2 - security update
2018-07-19 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2016-08-09 11:58:37
Updated openjpeg packages fix security vulnerability
2017-05-02 09:37:59
suse
suse
Security update for Chromium (important)
2016-08-08 00:10:12
Security update for Chromium (important)
2016-08-08 00:08:44
openvas
openvas
Google Chrome Security Updates(stable-channel-update-for-desktop-2016-08)-MAC OS X
2016-08-04 00:00:00
Google Chrome Security Updates(stable-channel-update-for-desktop-2016-08)-Windows
2016-08-04 00:00:00
openSUSE: Security Advisory for Chromium (openSUSE-SU-2016:1982-1)
2016-08-08 00:00:00
redhat
redhat
(RHSA-2016:1580) Important: chromium-browser security update
2016-08-09 04:49:21
(RHSA-2017:0559) Moderate: openjpeg security update
2017-03-19 23:39:06
(RHSA-2017:0838) Moderate: openjpeg security update
2017-03-23 02:35:48
freebsd
freebsd
chromium -- multiple vulnerabilities
2016-08-03 00:00:00
archlinux
archlinux
chromium: multiple issues
2016-08-17 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2016-08-03 00:00:00
debian
debian
[SECURITY] [DSA 3645-1] chromium-browser security update
2016-08-09 01:05:32
[SECURITY] [DSA 3645-1] chromium-browser security update
2016-08-09 01:05:32
[SECURITY] [DLA 1433-1] openjpeg2 security update
2018-07-19 20:29:10
kaspersky
kaspersky
KLA10850 Multiple vulnerabilities in Google Chrome
2016-08-03 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: chromium-52.0.2743.116-1.fc24
2016-08-12 19:41:52
[SECURITY] Fedora 26 Update: openjpeg2-2.2.0-1.fc26
2017-08-13 20:56:24
debiancve
debiancve
CVE-2016-5144
2016-08-07 19:59:00
CVE-2016-5143
2016-08-07 19:59:00
CVE-2016-5141
2016-08-07 19:59:00
redhatcve
redhatcve
CVE-2016-5144
2016-08-04 08:48:41
CVE-2016-5143
2016-08-04 08:49:12
CVE-2016-5140
2016-08-04 08:48:56
cve
cve
CVE-2016-5143
2016-08-07 19:59:00
CVE-2016-5144
2016-08-07 19:59:00
CVE-2016-5142
2016-08-07 19:59:00
ubuntucve
ubuntucve
CVE-2016-5144
2016-08-07 00:00:00
CVE-2016-5143
2016-08-07 00:00:00
CVE-2016-5141
2016-08-07 00:00:00
prion
prion
Path traversal
2016-08-07 19:59:00
Path traversal
2016-08-07 19:59:00
Code injection
2016-08-07 19:59:00
ubuntu
ubuntu
Oxide vulnerabilities
2016-09-14 00:00:00
veracode
veracode
Privilege Escalation
2019-01-15 09:16:31
gentoo
gentoo
Chromium: Multiple vulnerabilities
2016-10-29 00:00:00
oraclelinux
oraclelinux
openjpeg security update
2017-03-19 00:00:00
openjpeg security update
2017-03-22 00:00:00
centos
centos
openjpeg security update
2017-03-29 10:58:56
openjpeg security update
2017-03-20 08:25:44
ibm
ibm
Security Bulletin: Vulnerabilities in openjpeg affect PowerKVM
2018-06-18 01:36:15
amazon
amazon
Medium: openjpeg
2017-03-22 16:00:00
JSON
Related for MACOSX_GOOGLE_CHROME_52_0_2743_116.NASL
nessus25osv2mageia2suse2openvas16redhat3freebsd1archlinux1chrome1debian3kaspersky1fedora2debiancve8redhatcve8cve8ubuntucve8prion8ubuntu1veracode1gentoo1oraclelinux2centos2ibm1amazon1