Pepper Plugins Use-After-Free Vulnerability in Google Chrome

Pepper Plugins Use-After-Free Vulnerability in Google Chrome

CVE-2014-7906 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Use-after-free vulnerability in the Pepper plugins in Google Chrome before 39.0.2171.65 allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted Flash content that triggers an attempted PepperMediaDeviceManager access outside of the object's lifetime.

Learn more about our Cis Benchmark Audit For Google Chrome.