Vulnerabilities

CVE-2015-1303

by Fred · 11/10/2015

bindings/core/v8/V8DOMWrapper.h in Blink, as used in Google Chrome before 45.0.2454.101, does not perform a rethrow action to propagate information about a cross-context exception, which allows remote attackers to bypass the Same Origin Policy via a crafted HTML document containing an IFRAME element.

Date published : 2015-10-11

http://www.securityfocus.com/bid/76844

http://googlechromereleases.blogspot.com/2015/09/stable-channel-update_24.html

Similar

Tags: Cybersecurity Alert