Executive Summary
This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
| Summary | |
|---|---|
| Title | chromium-browser security update |
| Informations | |||
|---|---|---|---|
| Name | DSA-2192 | First vendor Publication | 2011-03-15 |
| Vendor | Debian | Last vendor Modification | 2011-03-15 |
| Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 10 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Several vulnerabilities were discovered in the Chromium browser. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-0779 Google Chrome before 9.0.597.84 does not properly handle a missing key in an extension, which allows remote attackers to cause a denial of service (application crash) via a crafted extension. CVE-2011-1290 Integer overflow in WebKit allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by Vincenzo Iozzo, Willem Pinckaers, and Ralf-Philipp Weinmann during a Pwn2Own competition at CanSecWest 2011. For the stable distribution (squeeze), these problems have been fixed in version 6.0.472.63~r59945-5+squeeze4 For the testing distribution (wheezy), these problems will be fixed soon. For the unstable distribution (sid), these problems have been fixed version 10.0.648.133~r77742-1 We recommend that you upgrade your chromium-browser packages. |
Original Source
| Url : http://www.debian.org/security/2011/dsa-2192 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 50 % | CWE-189 | Numeric Errors (CWE/SANS Top 25) |
| 50 % | CWE-20 | Improper Input Validation |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:12821 | |||
| Oval ID: | oval:org.mitre.oval:def:12821 | ||
| Title: | DSA-2192-1 chromium-browser -- several | ||
| Description: | Several vulnerabilities were discovered in the Chromium browser. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-0779 Google Chrome before 9.0.597.84 does not properly handle a missing key in an extension, which allows remote attackers to cause a denial of service via a crafted extension. CVE-2011-1290 Integer overflow in WebKit allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by Vincenzo Iozzo, Willem Pinckaers, and Ralf-Philipp Weinmann during a Pwn2Own competition at CanSecWest 2011. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2192-1 CVE-2011-0779 CVE-2011-1290 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0 | Product(s): | chromium-browser |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:14540 | |||
| Oval ID: | oval:org.mitre.oval:def:14540 | ||
| Title: | Google Chrome before 9.0.597.84 does not properly handle a missing key in an extension, which allows remote attackers to cause a denial of service (application crash) via a crafted extension. | ||
| Description: | Google Chrome before 9.0.597.84 does not properly handle a missing key in an extension, which allows remote attackers to cause a denial of service (application crash) via a crafted extension. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2011-0779 | Version: | 15 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
OpenVAS Exploits
| Date | Description |
|---|---|
| 2011-09-07 | Name : Mac OS X v10.6.4 Multiple Vulnerabilities (2010-007) File : nvt/gb_macosx_su10-007.nasl |
| 2011-08-29 | Name : Apple iTunes Arbitrary Code Execution Vulnerability (Mac OS X) File : nvt/secpod_itunes_code_exec_vuln_macosx.nasl |
| 2011-08-12 | Name : Apple Safari Multiple Vulnerabilities - April 2011 (Mac OS X) File : nvt/gb_apple_safari_mult_vuln_apr11_macosx.nasl |
| 2011-05-12 | Name : Debian Security Advisory DSA 2192-1 (chromium-browser) File : nvt/deb_2192_1.nasl |
| 2011-02-08 | Name : Google Chrome multiple vulnerabilities - February 11(Linux) File : nvt/gb_google_chrome_mult_vuln_feb11_lin.nasl |
| 2011-02-08 | Name : Google Chrome multiple vulnerabilities - February 11(Windows) File : nvt/gb_google_chrome_mult_vuln_feb11_win.nasl |
| 2011-01-24 | Name : FreeBSD Ports: chromium File : nvt/freebsd_chromium.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 72689 | Apple Multiple Products WebKit CSS Style Handling Overflow |
| 71182 | Google Chrome Unspecified Style Handling Memory Corruption A memory corruption flaw exists in Google Chrome. The program fails to sanitize user-supplied input during style handling, resulting in memory corruption. With a specially crafted web page, a context-dependent attacker can execute arbitrary code. |
| 70985 | Google Chrome Extension Missing Key DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when the program fails to properly handle a missing key in an extension, allowing a context-dependent attacker to use a crafted extension to cause a denial of service. |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2013-01-25 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libwebkit-121201.nasl - Type : ACT_GATHER_INFO |
| 2011-04-19 | Name : The remote host contains an application that has multiple vulnerabilities. File : itunes_10_2_2.nasl - Type : ACT_GATHER_INFO |
| 2011-04-19 | Name : The remote host contains a multimedia application that has multiple vulnerabi... File : itunes_10_2_2_banner.nasl - Type : ACT_GATHER_INFO |
| 2011-04-14 | Name : The remote host contains a web browser that is affected by several vulnerabil... File : macosx_Safari5_0_5.nasl - Type : ACT_GATHER_INFO |
| 2011-04-14 | Name : The remote host contains a web browser that is affected by several vulnerabil... File : safari_5_0_5.nasl - Type : ACT_GATHER_INFO |
| 2011-03-16 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2192.nasl - Type : ACT_GATHER_INFO |
| 2011-03-14 | Name : The remote host contains a web browser that is affected by a code execution v... File : google_chrome_10_0_648_133.nasl - Type : ACT_GATHER_INFO |
| 2011-02-04 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_9_0_597_84.nasl - Type : ACT_GATHER_INFO |
| 2010-12-08 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_6887828f022911e0b84d00262d5ed8ee.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:29:59 |
|
