oval:org.mitre.oval:def:24855
| Definition Id: oval:org.mitre.oval:def:24855 | |||
| Oval ID: | oval:org.mitre.oval:def:24855 | ||
| Title: | Vulnerability in Google Chrome before 36.0.1985.125, allows remote attackers to bypass the Same Origin Policy via a crafted file | ||
| Description: | The ResourceFetcher::canRequest function in core/fetch/ResourceFetcher.cpp in Blink, as used in Google Chrome before 36.0.1985.125, does not properly restrict subresource requests associated with SVG files, which allows remote attackers to bypass the Same Origin Policy via a crafted file. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-3160 | Version: | 4 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:11914 | |||
| Oval ID: | oval:org.mitre.oval:def:11914 | ||
| Title: | Google Chrome is installed | ||
| Description: | Google Chrome is installed | ||
| Family: | windows | Class: | inventory |
| Reference(s): | cpe:/a:google:chrome | Version: | 20 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:24855 | |||
