Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable4920.PASL
HistoryFeb 02, 2009 - 12:00 a.m.

Google Chrome < 1.0.154.46 Multiple Vulnerabilities

2009-02-0200:00:00
Tenable
www.tenable.com
23

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS

0.922

Percentile

99.0%

JSON

The version of Google Chrome installed on the remote host is earlier than 1.0.154.46. Such versions are reportedly affected by several issues :

  • Cross-site scripting vulnerabilities in the Adobe Reader Plugin itself could be leveraged using a PDF document to run scripts on arbitrary sites via Google Chrome. (CVE-2007-0048 and CVE-2007-0045)

  • A cross-domain security bypass vulnerability that could allow an attacker to bypass the same-origin policy and gain access to potentially sensitive information. (CVE-2009-0276)

Binary data 4920.pasl
VendorProductVersionCPE
googlechromecpe:/a:google:chrome

Related

chrome 1
nessus 28
openvas 16
checkpoint_advisories 2
cve 4
debiancve 1
prion 4
nvd 4
cvelist 4
gentoo 2
kaspersky 1
ubuntucve 2
cert 1
securityvulns 2
suse 2
redhat 2
mozilla 1
seebug 1
debian 1
chrome
chrome
Stable, Beta update: Yahoo! Mail and Security Fixes
2009-01-28 00:00:00
nessus
nessus
Google Chrome < 1.0.154.46 Multiple Vulnerabilities
2009-01-31 00:00:00
GLSA-200701-16 : Adobe Acrobat Reader: Multiple vulnerabilities
2007-01-26 00:00:00
Adobe PDF Plug-In < 8.0 / 7.0.9 / 6.0.6 Multiple Vulnerabilities (APSB07-01)
2007-01-05 00:00:00
openvas
openvas
Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities - Mac OS X
2014-04-15 00:00:00
Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities - Windows
2014-04-15 00:00:00
Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities - Linux
2014-04-15 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Reader Plugin Malformed URL Cross-Site Scripting (APSB07-01; CVE-2007-0045; CVE-2007-0048)
2010-01-12 00:00:00
Update Protection against Multiple Adobe Acrobat Vulnerabilities
2007-01-21 00:00:00
cve
cve
CVE-2009-0276
2022-10-03 16:24:11
CVE-2007-0048
2007-01-03 21:28:00
CVE-2007-0045
2007-01-03 21:28:00
debiancve
debiancve
CVE-2009-0276
2009-02-03 19:30:00
prion
prion
Cross site scripting
2007-01-03 21:28:00
Cross site scripting
2009-02-03 19:30:00
Cross site scripting
2007-01-03 21:28:00
nvd
nvd
CVE-2009-0276
2009-02-03 19:30:00
CVE-2007-0048
2007-01-03 21:28:00
CVE-2007-0045
2007-01-03 21:28:00
cvelist
cvelist
CVE-2009-0276
2022-10-03 16:24:11
CVE-2007-0048
2007-01-03 20:00:00
CVE-2007-0045
2007-01-03 20:00:00
gentoo
gentoo
Adobe Acrobat Reader: Multiple vulnerabilities
2007-01-22 00:00:00
Adobe Reader: Multiple vulnerabilities
2009-10-25 00:00:00
kaspersky
kaspersky
KLA10032 Multiple vulnerabilities in Adobe Acrobat & Reader
2007-01-09 00:00:00
ubuntucve
ubuntucve
CVE-2007-0045
2007-01-03 00:00:00
CVE-2007-1199
2007-03-02 00:00:00
cert
cert
Adobe Acrobat Plug-In cross domain violation
2007-01-03 00:00:00
securityvulns
securityvulns
Adobe reader plugin PDF files universal crossite scripting
2007-01-04 00:00:00
Mozilla Foundation Security Advisory 2007-02
2007-02-27 00:00:00
suse
suse
remote code execution in acroread
2007-01-22 18:37:17
remote code execution in acroread, acroread_ja
2009-10-26 13:17:31
redhat
redhat
(RHSA-2007:0017) Critical: Adobe Acrobat Reader security update
2007-01-11 00:00:00
(RHSA-2007:0021) Critical: Adobe Acrobat Reader security update
2007-01-22 00:00:00
mozilla
mozilla
Improvements to help protect against Cross-Site Scripting attacks — Mozilla
2007-02-23 00:00:00
seebug
seebug
Adobe Reader: Multiple vulnerabilities
2009-10-27 00:00:00
debian
debian
[SECURITY] [DSA 1336-1] New mozilla-firefox packages fix several vulnerabilities
2007-07-22 17:43:28

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS

0.922

Percentile

99.0%

JSON
Related for 4920.PASL
chrome1nessus28openvas16checkpoint_advisories2cve4debiancve1prion4nvd4cvelist4gentoo2kaspersky1ubuntucve2cert1securityvulns2suse2redhat2mozilla1seebug1debian1