Описание
The RuntimeEventRouter::OnExtensionUninstalled function in extensions/browser/api/runtime/runtime_api.cc in Google Chrome before 45.0.2454.85 does not ensure that the setUninstallURL preference corresponds to the URL of a web site, which allows user-assisted remote attackers to trigger access to an arbitrary URL via a crafted extension that is uninstalled.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 45.0.2454.85-0ubuntu1.1198 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [45.0.2454.85-0ubuntu0.14.04.1.1097]] |
| precise | ignored | |
| trusty | released | 45.0.2454.85-0ubuntu0.14.04.1.1097 |
| trusty/esm | DNE | trusty was released [45.0.2454.85-0ubuntu0.14.04.1.1097] |
| upstream | released | 45.0.2454.85 |
| vivid | released | 45.0.2454.85-0ubuntu0.15.04.1.1181 |
| wily | released | 45.0.2454.85-0ubuntu1.1198 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected] |
| precise | DNE | |
| trusty | not-affected | |
| trusty/esm | DNE | trusty was not-affected |
| upstream | not-affected | |
| vivid | not-affected | |
| wily | not-affected |
Показывать по
4.3 Medium
CVSS2
Связанные уязвимости
The RuntimeEventRouter::OnExtensionUninstalled function in extensions/browser/api/runtime/runtime_api.cc in Google Chrome before 45.0.2454.85 does not ensure that the setUninstallURL preference corresponds to the URL of a web site, which allows user-assisted remote attackers to trigger access to an arbitrary URL via a crafted extension that is uninstalled.
The RuntimeEventRouter::OnExtensionUninstalled function in extensions/browser/api/runtime/runtime_api.cc in Google Chrome before 45.0.2454.85 does not ensure that the setUninstallURL preference corresponds to the URL of a web site, which allows user-assisted remote attackers to trigger access to an arbitrary URL via a crafted extension that is uninstalled.
The RuntimeEventRouter::OnExtensionUninstalled function in extensions/ ...
The RuntimeEventRouter::OnExtensionUninstalled function in extensions/browser/api/runtime/runtime_api.cc in Google Chrome before 45.0.2454.85 does not ensure that the setUninstallURL preference corresponds to the URL of a web site, which allows user-assisted remote attackers to trigger access to an arbitrary URL via a crafted extension that is uninstalled.
Уязвимость браузера Google Chrome, позволяющая нарушителю перенаправить пользователя на произвольный URL
4.3 Medium
CVSS2