CVE-2016-1672

2016-06-05T23:59:00
ID CVE-2016-1672
Type cve
Reporter cve@mitre.org
Modified 2018-10-30T16:27:00

Description

The ModuleSystem::RequireForJsInner function in extensions/renderer/module_system.cc in the extension bindings in Google Chrome before 51.0.2704.63 mishandles properties, which allows remote attackers to conduct bindings-interception attacks and bypass the Same Origin Policy via unspecified vectors.