PT-2012-1628 · Google · Google Chrome

Sergey Glazunov

·

Publicado

2012-04-05

·

Atualizado

2024-06-15

·

CVE-2011-3067

CVSS v2.0

6.8

Média

VetorAV:N/AC:M/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 18.0.1025.151
Description The issue allows remote attackers to bypass the Same Origin Policy via vectors related to replacement of IFRAME elements.
Recommendations For versions prior to 18.0.1025.151, update to version 18.0.1025.151 or later to resolve the issue.

Exploit

Correção

Origin Validation Error

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-346

Identificadores relacionados

CVE-2011-3067
OPENSUSE-SU-2024:10171-1
OPENSUSE-SU-2024:12948-1

Produtos afetados

Google Chrome