Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-1631

Опубликовано: 06 мар. 2016
Источник: ubuntu
Приоритет: medium
CVSS2: 6.8
CVSS3: 8.8

Описание

The PPB_Flash_MessageLoop_Impl::InternalRun function in content/renderer/pepper/ppb_flash_message_loop_impl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loops, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.

РелизСтатусПримечание
devel

released

49.0.2623.87-0ubuntu1.1232
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [49.0.2623.87-0ubuntu0.14.04.1.1112]]
precise

ignored

trusty

released

49.0.2623.87-0ubuntu0.14.04.1.1112
trusty/esm

DNE

trusty was released [49.0.2623.87-0ubuntu0.14.04.1.1112]
upstream

released

49.0.2623.75
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

released

49.0.2623.87-0ubuntu0.15.10.1.1222

Показывать по

РелизСтатусПримечание
devel

released

1.13.6-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1.13.6-0ubuntu0.14.04.1]]
precise

DNE

trusty

released

1.13.6-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [1.13.6-0ubuntu0.14.04.1]
upstream

released

1.13.6
vivid/stable-phone-overlay

released

1.13.6-0ubuntu0.15.04.1~overlay1
vivid/ubuntu-core

DNE

wily

released

1.13.6-0ubuntu0.15.10.1

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-1631

redhat
почти 10 лет назад

The PPB_Flash_MessageLoop_Impl::InternalRun function in content/renderer/pepper/ppb_flash_message_loop_impl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loops, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.

nvd логотип

CVE-2016-1631

CVSS3: 8.8
nvd
почти 10 лет назад

The PPB_Flash_MessageLoop_Impl::InternalRun function in content/renderer/pepper/ppb_flash_message_loop_impl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loops, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.

debian логотип

CVE-2016-1631

CVSS3: 8.8
debian
почти 10 лет назад

The PPB_Flash_MessageLoop_Impl::InternalRun function in content/render ...

github логотип

GHSA-3wf8-838v-4qxv

CVSS3: 8.8
github
больше 3 лет назад

The PPB_Flash_MessageLoop_Impl::InternalRun function in content/renderer/pepper/ppb_flash_message_loop_impl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loops, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.

fstec логотип

BDU:2016-00642

fstec
почти 10 лет назад

Уязвимость браузера Google Chrome, позволяющая нарушителю обойти существующую политику ограничения доступа

6.8 Medium

CVSS2

8.8 High

CVSS3