CVE-2011-2878

Google Chrome before 14.0.835.202 does not properly restrict access to the window prototype, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

Date published : 2011-10-04

http://code.google.com/p/chromium/issues/detail?id=95671

http://googlechromereleases.blogspot.com/2011/10/stable-channel-update.html