CVE-2014-1731

by Fred · 26/04/2014

core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly check renderer state upon a focus event, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion" for SELECT elements.

Date published : 2014-04-26

http://archives.neohapsis.com/archives/bugtraq/2014-05/0128.html

http://archives.neohapsis.com/archives/bugtraq/2014-06/0174.html

CVE-2014-1731

Similar

Recent Posts

Categories

CVE-2014-1731

Share this:

Similar

Recent Posts

Categories

Tags