CVE-2015-1298

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 45.0.2454.85 Opera versions prior to 45.0.2454.85

Description The issue is related to errors in security settings in the RuntimeEventRouter::OnExtensionUninstalled function of the Google Chrome browser. This function does not ensure that the setUninstallURL preference corresponds to the URL of a web site, allowing remote attackers to trigger access to an arbitrary URL via a crafted extension that is uninstalled. The vulnerability can be exploited by a remote attacker to redirect a user to an arbitrary web page using a specially crafted application.

Recommendations For Google Chrome versions prior to 45.0.2454.85, update to version 45.0.2454.85 or later to resolve the issue. For Opera versions prior to 45.0.2454.85, update to a version that includes the fix for this issue, as the specific version is not provided. As a temporary workaround, consider disabling the setUninstallURL preference until a patch is available. Restrict access to the RuntimeEventRouter::OnExtensionUninstalled function to minimize the risk of exploitation. Avoid using the setUninstallURL preference in the affected API endpoint until the issue is resolved.