HomePentest-Tools.com Logo

Google Chrome Security Updates(stable-channel-update_13-2016-04)-Windows CVE-2016-1652CVE-2016-1653CVE-2016-1651CVE-2016-1654CVE-2016-1655CVE-2016-1656CVE-2016-1657CVE-2016-1658CVE-2016-1659

Severity
CVSSv3 Score
9.8
Vulnerability description

Google Chrome is prone to multiple vulnerabilities.

Risk description

Multiple flaws exist due to: - A universal XSS in the browsers extension bindings. - An out-of-bounds write in Chromes V8 JavaScript engine. - An out-of-bounds memory read issue in Pdfium JPEG2000 decoding. - An Uninitialized memory read in browsers media component. - An use-after-free in the extensions component. - A path restriction bypass in download implementation on Android. - An Address bar spoofing vulnerability. - The Extensions subsystem incorrectly relies on GetOrigin method calls for origin comparisons. - Multiple unspecified vulnerabilities. Successful exploitation of this vulnerability will allow remote attackers to execute arbitrary code, to obtain sensitive information and to cause denial of service or possibly have other impact via unknown vectors.

Recommendation

Upgrade to Google Chrome version 50.0.2661.75 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Apr 18, 2016
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available