The Indian computer emergency response team (CERT-IN) under the IT ministry has issued a high-severity warning for Google Chrome browser users.
Warning is for users who use the browser version before 97.0.4692.71.
As per warning, many vulnerabilities have been reported on Google Chrome which can be exploited by someone to execute the arbitrary code on the targeted system.
Further advisor reveals that “this vulnerability is on Google Chrome because it is used after free in storage, screenshot, enter, swiftshader, pdf, autofill, and fire file manager; inappropriate implementation in devtools, navigation, autofill, blink, webshare, Passwords and Composite; Heap Buffer Overflow in Fire Stream Media, Bookmarks and Angles; Type Confusion in V8; UI Security is wrong in Autofill, UI browser; Memory access beyond the limit in the web series; Use of Uninitialization in Fire Files and Inner Bypass Policy Service workers.
“A long-distance striker can exploit this vulnerability by luring the victim to visit a specialized webpage.
Successful exploitation of this vulnerability can allow long-distance striker to execute the arbitrary code in the targeted system.
To avoid fraud, the certificate wants Google Chrome users to update to version 97.0.4692.71.
The version mentioned was launched by the technology giant earlier this week and contained a number of improvements and improvements.
Last week, the certificate also mentioned that many vulnerabilities have been reported in Windows Microsoft which can allow long-distance striker to get increased privileges on targeted systems.
When combining this vulnerability, the attacker can create a direct line to the domain admin user in the Active Directory environment.
This escalation attack allows attackers to easily increase their privileges with domain admin after they compromise ordinary users in the domain.
This vulnerability is in Microsoft Windows because of defects in the active directory domain service.