CVE-2014-3201

2014-10-09T21:55:08
ID CVE-2014-3201
Type cve
Reporter NVD
Modified 2014-10-10T15:42:04

Description

core/rendering/compositing/RenderLayerCompositor.cpp in Blink, as used in Google Chrome before 38.0.2125.102 on Android, does not properly handle a certain IFRAME overflow condition, which allows remote attackers to spoof content via a crafted web site that interferes with the scrollbar.