Google Chrome Multiple Memory Corruption and Spoofing Vulnerabilities
RISK: Medium Risk
Multiple vulnerabilities have been identified in Google Chrome, which could be exploited by attackers to manipulate certain information or compromise a vulnerable system. These issues are caused by memory corruptions and input validation errors related to file dialog, SVGs, text editing, history, MIME type handling, notifications, omnibox autosuggest, and Ruby and Geolocation support, which could be exploited to spoof the address bar or execute arbitrary code by tricking a user into visiting a specially crafted web page.
Other unspecified issues related to an external component and to Windows kernel have been addressed.
Impact
- Remote Code Execution
- Spoofing
System / Technologies affected
- Google Chrome versions prior to 5.0.375.127
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Upgrade to Google Chrome version 5.0.375.127 :
http://www.google.com/chrome
Vulnerability Identifier
Source
Related Link
Share with