Business

News

 
More...

Alerts

 
More...

Events

 
More...
 
     
 

Multiple vulnerabilities in Google Chrome

 

Systems Affected


Google Chrome version prior to 49.0.2623.75

Threat Level


High


Overview


Multiple vulnerabilities have been reported in Google Chrome which could be exploited by remote attackers to execute arbitrary code, bypass security controls or access potentially sensitive information on the target system.


Description


Multiple vulnerabilities exist in various components of Google Chrome such as Blink, Pepper Plugin, Extensions, Skia, WebRTC, Favicon, libpng, Extensions UI and sub resource integrity (SRI). An unauthenticated remote attacker could exploit these vulnerabilities by enticing users to visit a specially crafted web page.

Successful exploitation of these vulnerabilities could allow remote attacker to execute arbitrary code, bypass security controls or access potentially sensitive information on the target system.


Impact



Solution/ Workarounds


Upgrade to Google chrome version 49.0.2623.75 https://www.google.com/chrome/


References


http://www.cert-in.org.in/


Disclaimer


The information provided herein is on "as is" basis, without warranty of any kind.


 
     

© Copyright Sri Lanka CERT|CC. All Rights Reserved.