Vulnerabilities

CVE-2015-1235

by Fred · 19/04/2015

The ContainerNode::parserRemoveChild function in core/dom/ContainerNode.cpp in the HTML parser in Blink, as used in Google Chrome before 42.0.2311.90, allows remote attackers to bypass the Same Origin Policy via a crafted HTML document with an IFRAME element.

Date published : 2015-04-19

http://googlechromereleases.blogspot.com/2015/04/stable-channel-update_14.html

https://code.google.com/p/chromium/issues/detail?id=456518

Similar

Tags: Cybersecurity Alert