Описание
Google Chrome before 28.0.1500.71 does not properly determine the circumstances in which a renderer process can be considered a trusted process for sign-in and subsequent sync operations, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 28.0.1500.71-0ubuntu1.13.10.1 |
| lucid | ignored | end of life |
| precise | released | 28.0.1500.71-0ubuntu1.12.04.1 |
| quantal | released | 28.0.1500.71-0ubuntu1.12.10.1 |
| raring | released | 28.0.1500.71-0ubuntu1.13.04.1 |
| upstream | released | 28.0.1500.71 |
Показывать по
Ссылки на источники
5.8 Medium
CVSS2
Связанные уязвимости
Google Chrome before 28.0.1500.71 does not properly determine the circumstances in which a renderer process can be considered a trusted process for sign-in and subsequent sync operations, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site.
Google Chrome before 28.0.1500.71 does not properly determine the circ ...
Google Chrome before 28.0.1500.71 does not properly determine the circumstances in which a renderer process can be considered a trusted process for sign-in and subsequent sync operations, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site.
5.8 Medium
CVSS2