Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2011 Greenbone AGOPENVAS:1361412562310801879
HistoryMay 11, 2011 - 12:00 a.m.

Google Chrome Multiple Vulnerabilities (May 2011) - Linux

2011-05-1100:00:00
Copyright (C) 2011 Greenbone AG
plugins.openvas.org
8

9.5 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.496 Medium

EPSS

Percentile

97.5%

JSON

Google Chrome is prone to multiple vulnerabilities.

# SPDX-FileCopyrightText: 2011 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.801879");
  script_version("2024-02-08T14:36:53+0000");
  script_tag(name:"last_modification", value:"2024-02-08 14:36:53 +0000 (Thu, 08 Feb 2024)");
  script_tag(name:"creation_date", value:"2011-05-11 15:50:14 +0200 (Wed, 11 May 2011)");
  script_cve_id("CVE-2011-1303", "CVE-2011-1304", "CVE-2011-1305", "CVE-2011-1434",
                "CVE-2011-1435", "CVE-2011-1436", "CVE-2011-1437", "CVE-2011-1438",
                "CVE-2011-1439", "CVE-2011-1440", "CVE-2011-1441", "CVE-2011-1442",
                "CVE-2011-1443", "CVE-2011-1444", "CVE-2011-1445", "CVE-2011-1446",
                "CVE-2011-1447", "CVE-2011-1448", "CVE-2011-1449", "CVE-2011-1450",
                "CVE-2011-1451", "CVE-2011-1452", "CVE-2011-1454", "CVE-2011-1455",
                "CVE-2011-1456");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_name("Google Chrome Multiple Vulnerabilities (May 2011) - Linux");
  script_xref(name:"URL", value:"http://googlechromereleases.blogspot.com/2011/04/chrome-stable-update.html");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/47604");

  script_copyright("Copyright (C) 2011 Greenbone AG");
  script_category(ACT_GATHER_INFO);
  script_family("General");
  script_dependencies("gb_google_chrome_detect_lin.nasl");
  script_mandatory_keys("Google-Chrome/Linux/Ver");
  script_tag(name:"impact", value:"Successful exploitation could allow attackers to bypass certain security
  restrictions, disclose potentially sensitive information, conduct spoofing
  attacks, and potentially compromise a user's system.");
  script_tag(name:"affected", value:"Google Chrome version prior to 11.0.696.57 on Linux");
  script_tag(name:"insight", value:"- An unspecified error related to a stale pointer exists within the handling
    of floating objects.

  - A linked-list race condition exists within the database handling.

  - The MIME handling does not properly ensure thread safety.

  - An extension with 'tabs' permission can gain access to local files.

  - An integer overflow error exists within the float rendering.

  - An error related to blobs can be exploited to violate the same origin
    policy.

  - An unspecified error can be exploited to cause an interference between
    renderer processes.

  - A use-after-free error exists within the handling of '<ruby>' tags and CSS.

  - A casting error exists within then handling of floating select lists.

  - An error related to mutation events can be exploited to corrupt node trees.

  - An unspecified error related to stale pointers exists in the layering code.

  - A race condition error exists within the sandbox launcher.

  - Interrupted loads and navigation errors can be leveraged to spoof the URL
    bar.

  - An unspecified error related to a stale pointer exists within the handling
    of drop-down lists.

  - An unspecified error related to a stale pointer exists within the height
    calculations.

  - A use-after-free error exists within the handling of WebSockets.

  - An error related to dangling pointers exists within the handling of file
    dialogs.

  - An error related to dangling pointers exists within the handling of DOM
    id maps.

  - Redirects and manual reloads can be exploited to spoof the URL bar.

  - A use-after-free error exists within the handling of DOM ids.

  - An error related to stale pointers exists within the handling of PDF forms.");
  script_tag(name:"solution", value:"Upgrade to the Google Chrome 11.0.696.57 or later.");
  script_tag(name:"summary", value:"Google Chrome is prone to multiple vulnerabilities.");
  script_tag(name:"qod_type", value:"executable_version");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}


include("version_func.inc");

chromeVer = get_kb_item("Google-Chrome/Linux/Ver");
if(!chromeVer){
  exit(0);
}

if(version_is_less(version:chromeVer, test_version:"11.0.696.57")){
  report = report_fixed_ver(installed_version:chromeVer, fixed_version:"11.0.696.57");
  security_message(port: 0, data: report);
}

Related

openvas 13
nessus 11
threatpost 1
chrome 1
ubuntucve 25
debiancve 25
prion 25
cve 25
securityvulns 11
checkpoint_advisories 2
osv 1
debian 2
freebsd 1
seebug 1
gentoo 1
kitploit 1
openvas
openvas
Google Chrome multiple vulnerabilities - May11 (Linux)
2011-05-11 00:00:00
Google Chrome multiple vulnerabilities - May11 (Windows)
2011-05-11 00:00:00
Google Chrome Multiple Vulnerabilities (May 2011) - Windows
2011-05-11 00:00:00
nessus
nessus
Google Chrome < 11.0.696.57 Multiple Vulnerabilities
2011-04-27 00:00:00
Debian DSA-2245-1 : chromium-browser - several vulnerabilities
2011-06-10 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (6887828f-0229-11e0-b84d-00262d5ed8ee)
2010-12-08 00:00:00
threatpost
threatpost
Google Fixes More Than 25 Bugs in Chrome, Pays $16,500 in Bounties
2011-04-27 17:26:25
chrome
chrome
Chrome Stable Update
2011-04-27 00:00:00
ubuntucve
ubuntucve
CVE-2011-1450
2011-05-03 00:00:00
CVE-2011-1451
2011-05-03 00:00:00
CVE-2011-1456
2011-05-03 00:00:00
debiancve
debiancve
CVE-2011-1450
2011-05-03 22:55:00
CVE-2011-1441
2011-05-03 22:55:00
CVE-2011-1451
2011-05-03 22:55:00
prion
prion
Design/Logic Flaw
2011-05-03 22:55:00
Design/Logic Flaw
2011-05-03 22:55:00
Null pointer dereference
2011-05-03 22:55:00
cve
cve
CVE-2011-1455
2011-05-03 22:55:00
CVE-2011-1451
2011-05-03 22:55:00
CVE-2011-1441
2011-05-03 22:55:00
securityvulns
securityvulns
iDefense Security Advisory 07.20.11: Multiple Vendor WebKit MathML Use-After-Free Vulnerability
2011-07-22 00:00:00
2245
2011-05-30 00:00:00
Google Chrome multiple security vulnerabilities
2011-05-30 00:00:00
checkpoint_advisories
checkpoint_advisories
Google Chrome and Apple Safari Apple Webkit Ruby Memory Corruption - Ver2 (CVE-2011-1440)
2014-03-31 00:00:00
Google Chrome and Apple Safari Apple Webkit Ruby Memory Corruption (CVE-2011-1440)
2012-01-17 00:00:00
osv
osv
chromium-browser - several vulnerabilities
2011-05-29 00:00:00
debian
debian
[SECURITY] [DSA 2245-1] chromium-browser security update
2011-05-29 10:50:22
[SECURITY] [DSA 2245-1] chromium-browser security update
2011-05-29 10:50:22
freebsd
freebsd
chromium -- multiple vulnerabilities
2010-10-19 00:00:00
seebug
seebug
Apple iTunesๅคšไธชๅฎ‰ๅ…จๆผๆดž
2011-10-13 00:00:00
gentoo
gentoo
Chromium, V8: Multiple vulnerabilities
2011-11-01 00:00:00
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00

9.5 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.496 Medium

EPSS

Percentile

97.5%

JSON
Related for OPENVAS:1361412562310801879
openvas13nessus11threatpost1chrome1ubuntucve25debiancve25prion25cve25securityvulns11checkpoint_advisories2osv1debian2freebsd1seebug1gentoo1kitploit1