Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2024 and is owned by Tenable, Inc. or an Affiliate thereof.GOOGLE_CHROME_44_0_2403_155.NASL
HistoryAug 20, 2015 - 12:00 a.m.

Google Chrome < 44.0.2403.155 Multiple Vulnerabilities

2015-08-2000:00:00
This script is Copyright (C) 2015-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
28

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8

Confidence

High

EPSS

0.949

Percentile

99.3%

JSON

The version of Google Chrome installed on the remote Windows host is prior to 44.0.2403.155. It is, therefore, affected by multiple vulnerabilities :

  • Multiple type confusion errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5554, CVE-2015-5555, CVE-2015-5558, CVE-2015-5562)

  • An unspecified vulnerability exists related to vector length corruptions. (CVE-2015-5125)

  • Multiple user-after-free errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5550, CVE-2015-5551, CVE-2015-3107, CVE-2015-5556, CVE-2015-5130, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5557, CVE-2015-5559, CVE-2015-5127, CVE-2015-5563, CVE-2015-5561, CVE-2015-5564, CVE-2015-5565, CVE-2015-5566)

  • Multiple heap buffer overflow conditions exist that allow an attacker to execute arbitrary code.
    (CVE-2015-5129, CVE-2015-5541)

  • Multiple buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5131, CVE-2015-5132, CVE-2015-5133)

  • Multiple memory corruption issues exist that allow an attacker to execute arbitrary code. (CVE-2015-5544, CVE-2015-5545, CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5552, CVE-2015-5553)

  • An integer overflow condition exists that allows an attacker to execute arbitrary code. (CVE-2015-5560)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(85567);
  script_version("1.14");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/16");

  script_cve_id(
    "CVE-2015-3107",
    "CVE-2015-5125",
    "CVE-2015-5127",
    "CVE-2015-5129",
    "CVE-2015-5130",
    "CVE-2015-5131",
    "CVE-2015-5132",
    "CVE-2015-5133",
    "CVE-2015-5134",
    "CVE-2015-5539",
    "CVE-2015-5540",
    "CVE-2015-5541",
    "CVE-2015-5544",
    "CVE-2015-5545",
    "CVE-2015-5546",
    "CVE-2015-5547",
    "CVE-2015-5548",
    "CVE-2015-5549",
    "CVE-2015-5550",
    "CVE-2015-5551",
    "CVE-2015-5552",
    "CVE-2015-5553",
    "CVE-2015-5554",
    "CVE-2015-5555",
    "CVE-2015-5556",
    "CVE-2015-5557",
    "CVE-2015-5558",
    "CVE-2015-5559",
    "CVE-2015-5560",
    "CVE-2015-5561",
    "CVE-2015-5562",
    "CVE-2015-5563",
    "CVE-2015-5564",
    "CVE-2015-5565",
    "CVE-2015-5566"
  );
  script_bugtraq_id(
    75087,
    76282,
    76283,
    76287,
    76288,
    76289,
    76291
  );

  script_name(english:"Google Chrome < 44.0.2403.155 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host contains a web browser that is affected by
multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Google Chrome installed on the remote Windows host is
prior to 44.0.2403.155. It is, therefore, affected by multiple
vulnerabilities  :

  - Multiple type confusion errors exist that allow an
    attacker to execute arbitrary code. (CVE-2015-5554,
    CVE-2015-5555, CVE-2015-5558, CVE-2015-5562)

  - An unspecified vulnerability exists related to vector
    length corruptions. (CVE-2015-5125)

  - Multiple user-after-free errors exist that allow an
    attacker to execute arbitrary code. (CVE-2015-5550,
    CVE-2015-5551, CVE-2015-3107, CVE-2015-5556,
    CVE-2015-5130, CVE-2015-5134, CVE-2015-5539,
    CVE-2015-5540, CVE-2015-5557, CVE-2015-5559,
    CVE-2015-5127, CVE-2015-5563, CVE-2015-5561,
    CVE-2015-5564, CVE-2015-5565, CVE-2015-5566)

  - Multiple heap buffer overflow conditions exist that
    allow an attacker to execute arbitrary code.
    (CVE-2015-5129, CVE-2015-5541)

  - Multiple buffer overflow conditions exist that allow an
    attacker to execute arbitrary code. (CVE-2015-5131,
    CVE-2015-5132, CVE-2015-5133)

  - Multiple memory corruption issues exist that allow an
    attacker to execute arbitrary code. (CVE-2015-5544,
    CVE-2015-5545, CVE-2015-5546, CVE-2015-5547,
    CVE-2015-5548, CVE-2015-5549, CVE-2015-5552,
    CVE-2015-5553)

  - An integer overflow condition exists that allows an
    attacker to execute arbitrary code. (CVE-2015-5560)");
  # http://googlechromereleases.blogspot.com/2015/08/stable-channel-update_11.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?e46da2dd");
  script_set_attribute(attribute:"see_also", value:"https://helpx.adobe.com/security/products/flash-player/apsb15-19.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Google Chrome 44.0.2403.155 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-5566");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:"CANVAS");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/08/11");
  script_set_attribute(attribute:"patch_publication_date", value:"2015/08/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/08/20");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:google:chrome");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2015-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("google_chrome_installed.nasl");
  script_require_keys("SMB/Google_Chrome/Installed");

  exit(0);
}

include("google_chrome_version.inc");

get_kb_item_or_exit("SMB/Google_Chrome/Installed");
installs = get_kb_list("SMB/Google_Chrome/*");

google_chrome_check_version(installs:installs, fix:'44.0.2403.155', severity:SECURITY_HOLE);

References

Related

nessus 17
redhat 1
openvas 8
suse 5
mageia 1
kaspersky 1
gentoo 1
altlinux 2
prion 32
freebsd 1
cvelist 32
cve 32
nvd 32
ubuntucve 33
checkpoint_advisories 1
nessus
nessus
FreeBSD : Adobe Flash Player -- critical vulnerabilities (f3778328-d288-4b39-86a4-65877331eaf7)
2015-08-13 00:00:00
Adobe AIR < 18.0.0.199 Multiple Vulnerabilities (APSB15-19)
2015-09-11 00:00:00
Flash Player < 18.0.0.232 Multiple Vulnerabilities (APSB15-19)
2015-09-11 00:00:00
redhat
redhat
(RHSA-2015:1603) Critical: flash-plugin security update
2015-08-12 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0311)
2015-10-15 00:00:00
Adobe Flash Player Multiple Vulnerabilities -01 (Aug 2015) - Mac OS X
2015-08-18 00:00:00
Adobe Air Multiple Vulnerabilities-01 (Aug 2015) - Mac OS X
2015-08-18 00:00:00
suse
suse
Security update for flash-player (critical)
2015-08-12 16:09:33
Security update for flash-player (critical)
2015-08-12 16:09:53
Security update for flash-player (critical)
2015-08-14 19:10:30
mageia
mageia
Updated flash-player-plugin package fixes security vulnerabilities
2015-08-11 23:22:53
kaspersky
kaspersky
KLA10650 Multiple vulnerabilities in Adobe products
2015-08-11 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-08-15 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt52
2015-08-12 00:00:00
Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt52
2015-08-12 00:00:00
prion
prion
Design/Logic Flaw
2015-08-24 10:59:00
Design/Logic Flaw
2015-08-14 01:59:00
Design/Logic Flaw
2015-08-14 01:59:00
freebsd
freebsd
Adobe Flash Player -- critical vulnerabilities
2015-08-11 00:00:00
cvelist
cvelist
CVE-2015-5566
2015-08-24 10:00:00
CVE-2015-5134
2015-08-14 01:00:00
CVE-2015-5563
2015-08-14 01:00:00
cve
cve
CVE-2015-5566
2015-08-24 10:59:00
CVE-2015-5565
2015-08-14 01:59:51
CVE-2015-5559
2015-08-14 01:59:44
nvd
nvd
CVE-2015-5566
2015-08-24 10:59:00
CVE-2015-5565
2015-08-14 01:59:51
CVE-2015-5134
2015-08-14 01:59:25
ubuntucve
ubuntucve
CVE-2015-5564
2015-08-14 00:00:00
CVE-2015-5130
2015-08-14 00:00:00
CVE-2015-5540
2015-08-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Use After Free Code Execution (APSB15-19: CVE-2015-3107; CVE-2015-5565)
2015-08-12 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8

Confidence

High

EPSS

0.949

Percentile

99.3%

JSON
Related for GOOGLE_CHROME_44_0_2403_155.NASL
nessus17redhat1openvas8suse5mageia1kaspersky1gentoo1altlinux2prion32freebsd1cvelist32cve32nvd32ubuntucve33checkpoint_advisories1