Notification

Icon
Error

Google Chrome Arbitrary Code Execution Vulnerability

Posted: Thursday, May 31, 2018 3:29:49 PM(UTC)
Esben.D

Esben.D

Member Administration Original PosterPosts: 1,982
4
Like
A new vulnerability has been discovered in Google Chrome. Web pages designed to utilize this vulnerability can allow for an attacker to perform arbitrary code executions in context of the browser. This can allow the retrieval of information, security bypasses and denial-of-service vulnerability.

All Google Chrome versions prior to 67.0.3396.62 are vulnerable and should be updated.

You can either download the Google Chrome Enterprise bundle for deployment on your network or simply let users update and restart their Google chrome by following these instructions.

To discover all assets with a Google Chrome version that is vulnerable, you can add and run the report below in your Lansweeper installation. Instructions on how to run this report in Lansweeper can be found in this forum post.

Code:
Select Top 1000000 tblAssets.AssetID,
  tblAssets.AssetName,
  tblAssets.Domain,
  tblAssets.Username,
  tblAssets.Userdomain,
  Coalesce(tsysOS.Image, tsysAssetTypes.AssetTypeIcon10) As icon,
  tblAssets.IPAddress,
  tsysIPLocations.IPLocation,
  tblAssetCustom.Manufacturer,
  tblAssetCustom.Model,
  tsysOS.OSname As OS,
  tblAssets.SP,
  tblAssets.Lastseen,
  tblAssets.Lasttried,
  tblSoftwareUni.softwareName As Software,
  tblSoftware.softwareVersion As Version,
  tblSoftwareUni.SoftwarePublisher As Publisher,
  tblSoftware.Lastchanged
From tblAssets
  Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
  Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
  Inner Join tsysIPLocations On tsysIPLocations.LocationID =
    tblAssets.LocationID
  Inner Join tblState On tblState.State = tblAssetCustom.State
  Inner Join tblSoftware On tblAssets.AssetID = tblSoftware.AssetID
  Inner Join tblSoftwareUni On tblSoftwareUni.SoftID = tblSoftware.softID
  Left Join tsysOS On tsysOS.OScode = tblAssets.OScode
Where tblSoftwareUni.softwareName = 'Google Chrome' And
  tblSoftware.softwareVersion Not Like '67.%' And tblState.Statename = 'Active'
Order By tblAssets.Domain,
  tblAssets.AssetName,
  Software
Esben.D
#1Esben.D Member Administration Original PosterPosts: 1,982  
posted: 5/31/2018 3:35:48 PM(UTC)
Feel free to discuss this topic in the related Reports forum topic.

Active Discussions

Lansweeper Automated warranty check not working for HP
by  Erik.T   Go to last post Go to first unread
Last post: Today at 5:40:25 PM(UTC)
Lansweeper Guide: Get Every Asset MAC Addresses From Every Subnet
by  Erik.T  
Go to last post Go to first unread
Last post: Today at 5:38:15 PM(UTC)
Lansweeper Vcenter Scanning Credential
by  Erik.T   Go to last post Go to first unread
Last post: Today at 5:33:58 PM(UTC)
Lansweeper SCCM Integration
by  Erik.T  
Go to last post Go to first unread
Last post: Today at 5:29:26 PM(UTC)
Lansweeper SATA MODE REPORT
by  Erik.T   Go to last post Go to first unread
Last post: Today at 5:20:37 PM(UTC)
Lansweeper Scanning - computer manufacturer shows as VPN though
by  Erik.T  
Go to last post Go to first unread
Last post: Today at 5:14:34 PM(UTC)
Lansweeper Lastlogon / lastlogondate
by  Erik.T   Go to last post Go to first unread
Last post: Today at 5:13:16 PM(UTC)
Lansweeper SNMP and not in English
by  Erik.T  
Go to last post Go to first unread
Last post: Today at 5:01:56 PM(UTC)