Kaspersky Threats

Описание

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities:

Use-after-free vulnerability in media can be exploited to arbitrary code execution;
Buffer overrun vulnerability in Blink can be exploited to arbitrary code execution;
URL spoof vulnerability in navigation can be exploited to arbitrary code execution;
Privilege elevation vulnerability in Installer can be exploited to arbitrary code execution;
URL bar spoofing vulnerability can be exploited to arbitrary code execution;
CSP bypass vulnerability can be exploited to arbitrary code execution;
Extension permission bypass vulnerability can be exploited to arbitrary code execution;
Out-of-bounds read vulnerability in PDFium can be exploited to arbitrary code execution;
File storage disclosure vulnerability can be exploited to arbitrary code execution;
HTTP authentication spoof vulnerability can be exploited to arbitrary code execution;
File download protection bypass vulnerability can be exploited to arbitrary code execution;
Cross-context information leak vulnerability can be exploited to arbitrary code execution;
Buffer overflow vulnerability in expat can be exploited to arbitrary code execution;
Cross-origin data leak vulnerability can be exploited to arbitrary code execution;
CSS injection vulnerability can be exploited to arbitrary code execution;
Address bar spoofing vulnerability can be exploited to arbitrary code execution;
Service worker state error vulnerability can be exploited to arbitrary code execution;
IDN spoof vulnerability can be exploited to arbitrary code execution;

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!