CVE-2016-1697

Sažetak

The FrameLoader::startLoad function in WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 51.0.2704.79, does not prevent frame navigations during DocumentLoader detach operations, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code.

Reference

http://googlechromereleases.blogspot.com/2016/06/stable-channel-update.html
https://access.redhat.com/errata/RHSA-2016:1201
http://www.securitytracker.com/id/1036026
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00005.html
https://crbug.com/613266
http://www.ubuntu.com/usn/USN-2992-1
https://codereview.chromium.org/2021373003
http://www.debian.org/security/2016/dsa-3594
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00003.html

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

07-11-2023 - 02:30

Objavljeno

05-06-2016 - 23:59