logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2015-1254

Description

core/dom/Document.cpp in Blink, as used in Google Chrome before 43.0.2357.65, enables the inheritance of the designMode attribute, which allows remote attackers to bypass the Same Origin Policy by leveraging the availability of editing.


Affected Software


CPE Name Name Version
debian:debian_linux debian debian linux 8.0
google:chrome google chrome 42.0.2311.152

Related