English
The Internet threat alert status is currently normal. At present, no major epidemics or other serious incidents have been recorded by Kaspersky Lab’s monitoring service. Internet threat level: 1

Google Chrome Flash Player Multiple Vulnerabilities


Secunia ID

SA52983

CVE-ID

CVE-2013-1378, CVE-2013-1379, CVE-2013-1380, CVE-2013-2555

Release Date

10 Apr 2013

Criticality

Highly Critical

Solution Status

Vendor Patch

Software

Google Chrome 26.x

Where

From remote

Impact
System access

This covers vulnerabilities where malicious people are able to gain system access and execute arbitrary code with the privileges of a local user.

Description

Multiple vulnerabilities have been reported in Google Chrome, which can be exploited by malicious people to compromise a user's system.

The vulnerabilities are caused due to a bundled vulnerable version of Adobe Flash Player.

For more information:
SA52931

The vulnerabilities are reported in versions prior to 26.0.1410.63 for Mac and Linux and prior to 26.0.1410.64 for Windows.

Solution

Update to version 26.0.1410.63 for Mac and Linux or 26.0.1410.64 for Windows.

Original Advisory

http://googlechromereleases.blogspot.dk/2013/04/stable-channel-update.html