Google · Google Chrome · CVE-2013-6660
**Name of the Vulnerable Software and Affected Versions**
Google Chrome versions prior to 33.0.1750.117
**Description**
The issue is related to the drag-and-drop implementation, which does not properly restrict the information in WebDropData data structures. This allows remote attackers to discover full pathnames via a crafted web site.
**Recommendations**
For versions prior to 33.0.1750.117, update to version 33.0.1750.117 or later to resolve the issue.