Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Google Chrome Security Updates(stable-channel-update_25-2016-05)-Windows
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
The host is installed with Google Chrome and is prone to multiple vulnerabilities.
Insight
Insight
The multiple flaws exist due to - Cross-origin bypass in extension bindings. - Cross-origin bypass in Blink. - Cross-origin bypass in extensions. - Type confusion in V8. - Heap overflow in V8. - Heap use-after-free in V8 bindings. - Heap use-after-free in Skia. - Heap overflow in PDFium. - CSP bypass for ServiceWorker. - Out-of-bounds access in libxslt. - Integer overflow in libxslt. - Out-of-bounds read in PDFium. - Information leak in extensions. - Out-of-bounds read in V8. - Heap buffer overflow in media. - Heap use-after-free in Autofill. - Heap buffer-overflow in Skia. - Limited cross-origin bypass in ServiceWorker. - HTTP Download of Software Removal Tool. - HPKP pins removed on cache clearance. - Various fixes from internal audits, fuzzing and other initiatives.
Affected Software
Affected Software
Google Chrome version prior to 51.0.2704.63 on Windows
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
Upgrade to Google Chrome version 51.0.2704.63 or later.
Common Vulnerabilities and Exposures (CVE)
- CVE-2016-1672
- CVE-2016-1673
- CVE-2016-1674
- CVE-2016-1675
- CVE-2016-1676
- CVE-2016-1677
- CVE-2016-1678
- CVE-2016-1679
- CVE-2016-1680
- CVE-2016-1681
- CVE-2016-1682
- CVE-2016-1683
- CVE-2016-1684
- CVE-2016-1685
- CVE-2016-1686
- CVE-2016-1687
- CVE-2016-1688
- CVE-2016-1689
- CVE-2016-1690
- CVE-2016-1691
- CVE-2016-1692
- CVE-2016-1693
- CVE-2016-1694
- CVE-2016-1695