HomePentest-Tools.com Logo

Google Chrome Multiple Vulnerabilities - 02 - May15 (Mac OS X) CVE-2015-1251CVE-2015-1252CVE-2015-1253CVE-2015-1254CVE-2015-1255CVE-2015-1256CVE-2015-1257CVE-2015-1258CVE-2015-1259CVE-2015-1260CVE-2015-1262CVE-2015-1263CVE-2015-1264CVE-2015-1265CVE-2015-3910

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Google Chrome is prone to multiple vulnerabilities.

Risk description

Multiple flaws are due to: - Multiple unspecified vulnerabilities in Google V8. - Use-after-free vulnerability in the SpeechRecognitionClient implementation in the Speech subsystem. - common/partial_circular_buffer.cc script in Google Chrome does not properly handle wraps. - Vulnerability in core/html/parser/HTMLConstructionSite.cpp in the DOM implementation in Blink, as used in Google Chrome. - Vulnerability in core/dom/Document.cpp in Blink, as used in Google Chrome which allows the inheritance of the designMode attribute. - Use-after-free vulnerability in content/renderer/media/webaudio_capturer_source.cc script in the WebAudio implementation. - Use-after-free vulnerability in the SVG implementation in Blink. - platform/graphics/filters/FEColorMatrix.cpp script in the SVG implementation in Blink. - Google Chrome relies on libvpx code that was not built with an appropriate size-limit value. - PDFium, as used in Google Chrome, does not properly initialize memory. - Multiple use-after-free vulnerabilities in content/renderer/media/user_media_client_impl.cc script in the WebRTC implementation. - Cross-site scripting (XSS) vulnerability in Google Chrome. - The Spellcheck API implementation in Google Chrome before does not use an HTTPS session for downloading a Hunspell dictionary. - platform/fonts/shaping/HarfBuzzShaper.cpp script in Blink, does not initialize a certain width field. Successful exploitation will allow remote attackers to cause a denial of service, inject arbitrary web script, spoof the URL bar or deliver misleading popup content, bypass the Same Origin Policy and a sandbox protection mechanism, execute arbitrary code and allow man-in-the-middle attackers to deliver incorrect spelling suggestions or possibly have unspecified other impact via crafted dimensions.

Recommendation

Upgrade to Google Chrome version 43.0.2357.65 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
May 20, 2015
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available