Vulnerabilities

CVE-2015-1274

by Fred · 22/07/2015

Google Chrome before 44.0.2403.89 does not ensure that the auto-open list omits all dangerous file types, which makes it easier for remote attackers to execute arbitrary code by providing a crafted file and leveraging a user’s previous "Always open files of this type" choice, related to download_commands.cc and download_prefs.cc.

Date published : 2015-07-22

http://www.securityfocus.com/bid/75973

http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html

Similar

Tags: Cybersecurity Alert