Описание
The Autofill feature in Google Chrome before 19.0.1084.46 does not properly restrict field values, which allows remote attackers to cause a denial of service (UI corruption) and possibly conduct spoofing attacks via vectors involving long values.
The Autofill feature in Google Chrome before 19.0.1084.46 does not properly restrict field values, which allows remote attackers to cause a denial of service (UI corruption) and possibly conduct spoofing attacks via vectors involving long values.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2011-3085
- https://exchange.xforce.ibmcloud.com/vulnerabilities/75590
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15256
- http://code.google.com/p/chromium/issues/detail?id=118374
- http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html
- http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html
- http://security.gentoo.org/glsa/glsa-201205-03.xml
- http://www.securityfocus.com/bid/53540
- http://www.securitytracker.com/id?1027067
Связанные уязвимости
The Autofill feature in Google Chrome before 19.0.1084.46 does not properly restrict field values, which allows remote attackers to cause a denial of service (UI corruption) and possibly conduct spoofing attacks via vectors involving long values.
The Autofill feature in Google Chrome before 19.0.1084.46 does not properly restrict field values, which allows remote attackers to cause a denial of service (UI corruption) and possibly conduct spoofing attacks via vectors involving long values.
The Autofill feature in Google Chrome before 19.0.1084.46 does not pro ...