HomePentest-Tools.com Logo

Google Chrome Multiple Vulnerabilities-01 Dec15 (Windows) CVE-2015-6764CVE-2015-6765CVE-2015-6766CVE-2015-6767CVE-2015-6768CVE-2015-6770CVE-2015-6771CVE-2015-6772CVE-2015-6773CVE-2015-6774CVE-2015-6775CVE-2015-6776CVE-2015-6777CVE-2015-6778CVE-2015-6779CVE-2015-6780CVE-2015-6781CVE-2015-6782CVE-2015-6784CVE-2015-6785CVE-2015-6786CVE-2015-6787CVE-2015-8478CVE-2015-8479CVE-2015-8480CVE-2015-6769

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

google chrome is prone to multiple vulnerabilities.

Risk description

Multiple flaws exist due to: - VideoFramePool::PoolImpl::CreateFrame function in media/base/video_frame_pool.cc script does not initialize memory for a video-frame data structure. - Multiple unspecified vulnerabilities. - Multiple cross-origin bypass vulnerabilities. - Multiple out of bounds access vulnerabilities. - Multiple use-after-free vulnerabilities. - Integer overflow in Sfntly. - Content spoofing vulnerability in Omnibox. - Escaping issue in saved pages. - Wildcard matching issue in CSP. - Multiple scheme bypass vulnerabilities. - Type confusion vulnerability in PDFium. Successful exploitation would allow an attacker to execute arbitrary code or to cause a denial of service or possibly have other impact, bypass the security restrictions and gain access to potentially sensitive information.

Recommendation

Upgrade to Google Chrome version 47.0.2526.73 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Dec 6, 2015
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available