Google Chrome Multiple Denial Of Service Vulnerabilities - February 11(Linux) Network Vulnerability

Summary

The host is running Google Chrome and is prone to multiple vulnerabilities.

Impact

Successful exploitation could allow attackers to cause denial-of-service. Impact Level: Application

Solution

Upgrade to the Google Chrome 9.0.597.94 or later, For updates refer to http://www.google.com/chrome

Insight

The flaws are due to - Not properly performing event handling for animations - Use-after-free error in SVG font faces - Not properly handling anonymous blocks - Out-of-bounds read in plug-in handling - Not properly performing process termination upon memory exhaustion

Affected

Google Chrome version prior to 9.0.597.94

References

http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-0981, CVE-2011-0982, CVE-2011-0983, CVE-2011-0984, CVE-2011-0985
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

CA kmxfw.sys Code Execution and DoS Vulnerabilities
AT-TFTP Server Long Filename BoF Vulnerability
BitDefender 'pdf.xmd' Module PDF Parsing Remote DoS Vulnerability
EMC NetWorker 'nsrexecd' RPC Packet Denial of Service Vulnerability
Adobe Reader '.ETD File' Denial of Service Vulnerability (Linux)

Google Chrome Multiple Denial of Service Vulnerabilities - February 11(Linux)

Take action and discover your vulnerabilities