Skip to main content

Google Chrome Multiple Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 19 Mar 2010 5450 Views

RISK: Medium Risk

Multiple vulnerabilities have been identified in Google Chrome, which could be exploited by remote attackers to bypass restrictions, disclose sensitive information or compromise a vulnerable system.

1. A race conditions and pointer errors in the sandbox.

2. An errors related to persisted metadata such as Web Databases and STS.

3. A HTTP headers being processed before SafeBrowsing check.

4. A memory corruption error when processing malformed SVG, which could be exploited to execute arbitrary code.

5. An integer overflow errors in WebKit JavaScript objects, which could be exploited to execute arbitrary code.

6. A HTTP basic authentication dialog URL truncation.

7. A download warning dialogs.

8. An unspecified error which could allow cross-origin bypass attacks.

9. A memory corruption error when handling empty SVG elements.


Impact

  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • Google Chrome versions prior to 4.1.249.1036

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier

  • No CVE information is available

Source