The host is running Google Chrome and is prone to multiple vulnerabilities.

Successful exploitation could allow attackers to cause denial-of-service. Impact Level: Application

Upgrade to the Google Chrome 10.0.648.127 or later, For updates refer to http://www.google.com/chrome

The flaws are due to - Not preventing 'navigation' and 'close' operations on the top location of a sandboxed frame. - Cross-origin error message leak. - Error in performing 'box layout'. - Memory corruption error in 'counter nodes'. - Error in 'Web Workers' implementation which allows remote attackers to bypass the Same Origin Policy via unspecified vectors, related to an error message leak. - Use-after-free vulnerability in 'DOM URL' handling. - Error in 'Google V8', which allows remote attackers to bypass the Same Origin Policy via unspecified vectors. - Use-after-free vulnerability in document script lifetime handling. - Error in performing 'table painting'. - Error in 'OGG' container implementation. - Use of corrupt out-of-bounds structure in video code. - Error in handling DataView objects. - Bad cast in text rendering. - Error in context implementation in WebKit. - Unspecified vulnerability in the 'XSLT' implementation. - Not properly handling 'SVG' cursors. - 'DOM' tree corruption with attribute handling. - Corruption via re-entrancy of RegExp code.

Google Chrome version prior to 10.0.648.127 on Windows

• http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html

---

Updated on 2015-03-25