Google Chrome Multiple Vulnerabilities

Last Update Date: 14 Nov 2013 10:50 Release Date: 14 Nov 2013 3425 Views

RISK: High Risk

High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities have been identified in Google Chrome, which can be exploited by malicious people to conduct spoofing attacks, disclose potentially sensitive information, and compromise a user's system.

  • A use-after-free error exists in speech input elements.
  • A use-after-free error exists in media elements.
  • An out-of-bounds read error exists in SVG.
  • A use-after-free error exists in "id" attribute strings.
  • A use-after-free error exists in DOM ranges.
  • An error related to interstitial warnings can be exploited to spoof contents of the address bar.
  • An out-of-bounds read error exists in HTTP parsing.
  • An error exists due to not checking certificates during TLS renegotiation.
  • Some unspecified errors exist.
  • A use-after-free error exists in libjingle.

Impact

  • Remote Code Execution
  • Information Disclosure
  • Spoofing

System / Technologies affected

  • Google Chrome 30.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Upgrade to version 31.0.1650.48.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Microsoft Windows Digital Signatures Denial of Service Vulnerability

13 Nov 2013 3332 Views

Next

Google Chrome Multiple Vulnerabilities

18 Nov 2013 3408 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY