Skip to main content

Google Chrome Multiple Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 10 Jun 2010 5346 Views

RISK: Medium Risk

Multiple vulnerabilities have been identified in Google Chrome, which could be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, disclose potentially sensitive information, or potentially compromise a vulnerable system.

1. An unspecified error exists related to cross-origin keystroke redirection. No further information is currently available.

2. An unspecified error can be exploited to bypass cross-origin restrictions in DOM methods.

3. An unspecified error related to table layouts can be exploited to corrupt memory.

4. An unspecified error can be exploited to escape the sandbox on the Linux platform.

5. An unspecified error exists related to a stale pointer. No further information is currently available.

6. An unspecified error related to DOM node normalisation can be exploited to corrupt memory.

7. An unspecified error related to text transforms can be exploited to corrupt memory.

8. An error related to the "innerHTML" property of textarea can be exploited to conduct cross-site scripting attacks.

9. An unspecified error related to font handling can be exploited to corrupt memory.

10. An unspecified error exists due to Geolocation events firing after document deletion. No further information is currently available.

11. An unspecified error related to the rendering of list markers can be exploited to corrupt memory.


Impact

  • Cross-Site Scripting
  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • Google Chrome versions prior to 5.0.375.70

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier

  • No CVE information is available

Source


Related Link