Release date:
Updated on:
Affected Systems:
Google Chrome 6.0.472.62
Google Chrome 6.0.472.59
Google Chrome 6.0.472.59
Google Chrome 6.0.472 55
Unaffected system:
Google Chrome 7.0.517.41
Description:
--------------------------------------------------------------------------------
Bugtraq id: 44241
Cve id: CVE-2010-4040, CVE-2010-4042
Google Chrome is a Web browser developed by Google.
Google Chrome versions earlier than 7.0.517.41 have multiple security vulnerabilities. Attackers can exploit these vulnerabilities to execute arbitrary code in the browser, resulting in DOS and spoofing attacks and sensitive information, attackers can bypass the target security restrictions.
<* Source: Inferno
Chris Evans (chris@scary.beasts.org)
Kuzzcc
Jordi Chancel
Dan Rosenberg
Simon Schaak
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Google
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.google.com