Описание
The extension subsystem in Google Chrome before 17.0.963.78 does not properly handle history navigation, which allows remote attackers to execute arbitrary code by leveraging a "Universal XSS (UXSS)" issue.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| hardy | DNE | |
| lucid | released | 3.0.1271.97-0ubuntu0.10.04.1 |
| maverick | released | 17.0.963.78~r125577 |
| natty | released | 17.0.963.78~r125577 |
| oneiric | released | 3.0.1271.97-0ubuntu0.11.10.1 |
| precise | released | 3.0.1271.97-0ubuntu0.12.04.1 |
| quantal | released | 3.0.1271.97-0ubuntu0.12.10.1 |
| raring | not-affected | |
| upstream | released | 17.0.963.78 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| hardy | ignored | end of life |
| lucid | ignored | end of life |
| natty | ignored | end of life |
| oneiric | ignored | end of life |
| precise | released | 1.8.1-0ubuntu0.12.04.1 |
| quantal | not-affected | |
| raring | not-affected | |
| upstream | released | 1.8.1 |
Показывать по
EPSS
10 Critical
CVSS2
Связанные уязвимости
The extension subsystem in Google Chrome before 17.0.963.78 does not properly handle history navigation, which allows remote attackers to execute arbitrary code by leveraging a "Universal XSS (UXSS)" issue.
The extension subsystem in Google Chrome before 17.0.963.78 does not p ...
The extension subsystem in Google Chrome before 17.0.963.78 does not properly handle history navigation, which allows remote attackers to execute arbitrary code by leveraging a "Universal XSS (UXSS)" issue.
EPSS
10 Critical
CVSS2