Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2016-1675 - CERT CVE
CVE-2016-1675
ID
CVE-2016-1675
Sažetak
Blink, as used in Google Chrome before 51.0.2704.63, allows remote attackers to bypass the Same Origin Policy by leveraging the mishandling of Document reattachment during destruction, related to FrameLoader.cpp and LocalFrame.cpp.
Reference
https://codereview.chromium.org/1858833003
http://www.securityfocus.com/bid/90876
https://crbug.com/600182
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00005.html
http://www.securitytracker.com/id/1035981
http://www.debian.org/security/2016/dsa-3590
http://googlechromereleases.blogspot.com/2016/05/stable-channel-update_25.html
http://www.ubuntu.com/usn/USN-2992-1
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00062.html
https://access.redhat.com/errata/RHSA-2016:1190
https://security.gentoo.org/glsa/201607-07
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00063.html
CVSS
Base:
6.8
Impact:
6.4
Exploitability:
8.6
Pristup
Vektor
Složenost
Autentikacija
NETWORK
MEDIUM
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
PARTIAL
PARTIAL
PARTIAL
CVSS vektor
AV:N/AC:M/Au:N/C:P/I:P/A:P
Zadnje važnije ažuriranje
07-11-2023 - 02:30
Objavljeno
05-06-2016 - 23:59
