Security bypass vulnerability in Google Chrome via vectors involving a blocked plug-in (rpm)ID: oval:org.secpod.oval:def:9500 | Date: (C)2013-03-09 (M)2022-06-24 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome before 25.0.1364.152 and is prone to security bypass vulnerability. A flaw is present in the application, which fails to properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in. Successful exploitation could allow attackers to bypass intended access restrictions via vectors involving a blocked plug-in.