CVE-2016-5144

2016-08-07T19:59:00
ID CVE-2016-5144
Type cve
Reporter cve@mitre.org
Modified 2017-07-01T01:29:00

Description

The Developer Tools (aka DevTools) subsystem in Blink, as used in Google Chrome before 52.0.2743.116, mishandles the script-path hostname, remoteBase parameter, and remoteFrontendUrl parameter, which allows remote attackers to bypass intended access restrictions via a crafted URL, a different vulnerability than CVE-2016-5143.