Google Chrome Multiple Vulnerabilities
Last Update Date:
3 Sep 2012 14:10
Release Date:
3 Sep 2012
5181
Views
RISK: High Risk
TYPE: Clients - Browsers
Multiple vulnerabilities have been identified in Google Chrome, which could be exploited by malicious people to conduct cross-site scripting attacks and compromise a user's system.
- An out-of-bounds read error exists when handling line breaks.
- A bad cast error exists within run-ins.
- A race condition error exists when handling XMLHttpRequest calls.
- An error when loading URLs can be exploited to cause a stale buffer.
- A bad cast error exists when handling XSL transforms.
- An error when handling certain SSL data can be exploited to cause a cross-site scripting attack.
Impact
- Cross-Site Scripting
- Remote Code Execution
System / Technologies affected
- Google Chrome 21.x
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Update to version 21.0.1180.89.
Vulnerability Identifier
- CVE-2012-2865
- CVE-2012-2866
- CVE-2012-2867
- CVE-2012-2868
- CVE-2012-2869
- CVE-2012-2870
- CVE-2012-2871
- CVE-2012-2872
Source
Related Link
Share with