Lucene search

FreeBSD1091D2D1-CB2E-11E5-B14B-BCAEC565249C

HistoryDec 28, 2015 - 12:00 a.m.

webkit -- UI spoof

2015-12-2800:00:00

vuxml.freebsd.org

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

79.2%

JSON

webkit reports:

The ScrollView::paint function in platform/scroll/ScrollView.cpp
in Blink, as used in Google Chrome before 35.0.1916.114, allows
remote attackers to spoof the UI by extending scrollbar painting
into the parent frame.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchwebkit-gtk2< 2.4.9_1UNKNOWN
FreeBSDanynoarchwebkit-gtk3< 2.4.9_1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	webkit-gtk2	< 2.4.9_1	UNKNOWN
FreeBSD	any	noarch	webkit-gtk3	< 2.4.9_1	UNKNOWN

References

webkitgtk.org/security/WSA-2015-0002.html

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

79.2%

JSON

Related for 1091D2D1-CB2E-11E5-B14B-BCAEC565249C