Lucene search
FreeBSD Ports: chromium
🗓️ 03 Oct 2012 00:00:00Reported by Copyright (C) 2012 E-Soft Inc.Type 
openvas🔗 plugins.openvas.org👁 35 Views
FreeBSD Ports: chromium: Multiple vulnerabilities in Google Chrome before version 22.0.1229.7
Show more
| Reporter | Title | Published | Views | Family All 193 |
|---|---|---|---|---|
 | Google Chrome < 22.0.1229.79 Multiple Vulnerabilities | 26 Sep 201200:00 | – | nessus |
| Google Chrome < 22.0.1229.79 Multiple Vulnerabilities | 26 Sep 201200:00 | – | nessus |
| FreeBSD : chromium -- multiple vulnerabilities (5bae2ab4-0820-11e2-be5f-00262d5ed8ee) | 27 Sep 201200:00 | – | nessus |
| Google Chrome < 22.0.1229.79 Multiple Vulnerabilities | 26 Sep 201200:00 | – | nessus |
| openSUSE Security Update : chromium (openSUSE-SU-2012:1376-1) | 13 Jun 201400:00 | – | nessus |
| GLSA-201210-07 : Chromium: Multiple vulnerabilities | 22 Oct 201200:00 | – | nessus |
| Debian DSA-2555-1 : libxslt - several vulnerabilities | 6 Oct 201200:00 | – | nessus |
| Mandriva Linux Security Advisory : libxslt (MDVSA-2013:047) | 20 Apr 201300:00 | – | nessus |
| GLSA-201401-07 : libxslt: Denial of Service | 12 Jan 201400:00 | – | nessus |
| Mandriva Linux Security Advisory : libxslt (MDVSA-2012:164) | 12 Oct 201200:00 | – | nessus |
10
| Source | Link |
|---|---|
| vuxml | www.vuxml.org/freebsd/5bae2ab4-0820-11e2-be5f-00262d5ed8ee.html |
| googlechromereleases | www.googlechromereleases.blogspot.nl/search/label/Stable%20updates |
# SPDX-FileCopyrightText: 2012 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.72445");
script_tag(name:"cvss_base", value:"7.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_cve_id("CVE-2012-2889", "CVE-2012-2886", "CVE-2012-2881", "CVE-2012-2876", "CVE-2012-2883", "CVE-2012-2887", "CVE-2012-2888", "CVE-2012-2894", "CVE-2012-2877", "CVE-2012-2879", "CVE-2012-2884", "CVE-2012-2874", "CVE-2012-2875", "CVE-2012-2878", "CVE-2012-2880", "CVE-2012-2882", "CVE-2012-2885", "CVE-2012-2890", "CVE-2012-2891", "CVE-2012-2892", "CVE-2012-2893", "CVE-2012-2895");
script_version("2023-07-26T05:05:09+0000");
script_tag(name:"last_modification", value:"2023-07-26 05:05:09 +0000 (Wed, 26 Jul 2023)");
script_tag(name:"creation_date", value:"2012-10-03 11:11:06 -0400 (Wed, 03 Oct 2012)");
script_name("FreeBSD Ports: chromium");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2012 E-Soft Inc.");
script_family("FreeBSD Local Security Checks");
script_tag(name:"insight", value:"The following package is affected: chromium
CVE-2012-2889
Cross-site scripting (XSS) vulnerability in Google Chrome before
22.0.1229.79 allows remote attackers to inject arbitrary web script or
HTML via vectors involving frames, aka 'Universal XSS (UXSS).'
CVE-2012-2886
Cross-site scripting (XSS) vulnerability in Google Chrome before
22.0.1229.79 allows remote attackers to inject arbitrary web script or
HTML via vectors related to the Google V8 bindings, aka 'Universal XSS
(UXSS).'
CVE-2012-2881
Google Chrome before 22.0.1229.79 does not properly handle plug-ins,
which allows remote attackers to cause a denial of service (DOM tree
corruption) or possibly have unspecified other impact via unknown
vectors.
CVE-2012-2876
Buffer overflow in the SSE2 optimization functionality in Google
Chrome before 22.0.1229.79 allows remote attackers to cause a denial
of service or possibly have unspecified other impact via unknown
vectors.
CVE-2012-2883
Skia, as used in Google Chrome before 22.0.1229.79, allows remote
attackers to cause a denial of service or possibly have unspecified
other impact via vectors that trigger an out-of-bounds write
operation, a different vulnerability than CVE-2012-2874.
CVE-2012-2887
Use-after-free vulnerability in Google Chrome before 22.0.1229.79
allows remote attackers to cause a denial of service or possibly have
unspecified other impact via vectors involving onclick events.
CVE-2012-2888
Use-after-free vulnerability in Google Chrome before 22.0.1229.79
allows remote attackers to cause a denial of service or possibly have
unspecified other impact via vectors involving SVG text references.
Text truncated. Please see the references for more information.
This VT has been deprecated and is therefore no longer functional.");
script_tag(name:"solution", value:"Update your system with the appropriate patches or
software upgrades.");
script_xref(name:"URL", value:"http://googlechromereleases.blogspot.nl/search/label/Stable%20updates");
script_xref(name:"URL", value:"http://www.vuxml.org/freebsd/5bae2ab4-0820-11e2-be5f-00262d5ed8ee.html");
script_tag(name:"summary", value:"The remote host is missing an update to the system
as announced in the referenced advisory.");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"deprecated", value:TRUE);
exit(0);
}
exit(66);
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo03 Oct 2012 00:00Current
7.8High risk
Vulners AI Score7.8
CVSS27.5
EPSS0.02282