Skip to main content

Google Chrome Multiple Vulnerabilities

Last Update Date: 7 Feb 2011 16:55 Release Date: 7 Feb 2011 6184 Views

RISK: High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities have been identified in Google Chrome, which could be exploited by remote attackers to bypass restrictions, gain knowledge of sensitive information, cause a denial of service or execute arbitrary code.

1. A race condition within audio handling, which could be exploited to compromise a vulnerable system.

2. An error related to "stat()", which could result in a sandbox leak.

3. A use-after-free error when loading images, which could be exploited to execute arbitrary code.

4. An origin validation error related to drag and drop, which could allow information disclosure.

5. An error related to extensions with a missing key, which could cause a crash.

6. A memory corruption error related to PDF printing, which could allow code execution.

7. An error when merging autofill profiles.

8. An error in the SSL libraries on Mac, which could cause a crash.

9. An error in related to volume settings, which could cause a crash.


Impact

  • Remote Code Execution

System / Technologies affected

  • Google Chrome versions prior to 9.0.597.84

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Upgrade to Google Chrome version 9.0.597.84

Vulnerability Identifier

  • No CVE information is available

Source


Related Link