11 matches found
EUVD-2015-1441
Malware in sbrugna...
CVE-2016-2845
Removed by vendor...
The vulnerability of Google Chrome browser allows a perpetrator to gain access to protected information.
The vulnerability of the FrameFetchContext::updateTimingInfoForIFrameNavigation function in the Blink browser component of Google Chrome is related to security configuration errors. Exploiting this vulnerability may allow a remote attacker to gain access to protected information via JavaScript...
Google Chrome Blink Information Disclosure Vulnerability (CNVD-2015-05857)
Google Chrome is a WEB-based browser. A security vulnerability in the FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Google Chrome Blink allows remote attackers to construct malicious WEB page and trick users into parsing it, which can be...
CVE-2015-1300
The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to obtain sensitive...
Session fixation
The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to obtain sensitive...
CVE-2015-1300
The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to obtain sensitive...
CVE-2015-1300
Removed by vendor...
CVE-2015-1300
CVE-2015-1300 affects Blink (Chrome’s rendering engine): FrameFetchContext::updateTimingInfoForIFrameNavigation does not properly restrict IFRAME Resource Timing API times, enabling a remote attacker to glean sensitive info via crafted JavaScript using history.back. Affects Chrome before 45.0.245...
UBUNTU-CVE-2015-1300
The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to obtain sensitive...
CVE-2015-1300
The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to obtain sensitive...