Same Origin Policy bypass vulnerability in the DOM implementation in Google Chrome via crafted javascript code (rpm)ID: oval:org.secpod.oval:def:32198 | Date: (C)2015-12-23 (M)2022-08-16 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome before 47.0.2526.73 and is prone to same origin policy bypass vulnerability. The flaw is present in the application, which fails to handle the proper interaction with plugin. Successful exploitation allows remote attackers to bypass same origin policy.