Same origin policy bypass vulnerability in web workers implementation in Google Chrome (rpm) before 10.0.648.127ID: oval:org.secpod.oval:def:494 | Date: (C)2011-03-18 (M)2022-10-10 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome and is prone to same origin policy bypass vulnerability. A flaw is present in the application which does not properly perform box layout. Successful exploitation allow remote attackers to bypass the same origin policy via unspecified vectors, related to an "error message leak".