CVE-2014-1703

2014-03-16T14:06:00
ID CVE-2014-1703
Type cve
Reporter cve@mitre.org
Modified 2017-01-07T02:59:00

Description

Use-after-free vulnerability in the WebSocketDispatcherHost::SendOrDrop function in content/browser/renderer_host/websocket_dispatcher_host.cc in the Web Sockets implementation in Google Chrome before 33.0.1750.149 might allow remote attackers to bypass the sandbox protection mechanism by leveraging an incorrect deletion in a certain failure case.