3 matches found
Google Chrome Flash插件点击劫持漏洞(CVE-2013-2866)
CVE ID: CVE-2013-2866 Google Chrome是一款流行的WEB浏览器 Google Chrome在处理嵌入的Flash元素的opacity属性时存在错误,允许攻击者诱使用户点击由Flash设置伪装成的正常图形元素,可获取对系统摄像头和话筒的访问 0 Google Chrome 27.x Google Chrome 27.0.1453.116已经修复此漏洞,建议用户下载更新: http://www.google.com/chrome...
CVE-2013-2866
CVE-2013-2866 affects Google Chrome and Chrome OS where the Flash plugin's handling of an embedded Flash element’s opacity allowed a clickjacking technique to trick users into granting camera or microphone access. Root cause: improper determination of user consent for Flash-permission requests, e...
Google Chrome < 27.0.1453.116 Flash Click-Jacking
The version of Google Chrome installed on the remote host is a version prior to 27.0.1453.116 and is, therefore, affected by a click-jacking vulnerability due to the embedded Flash plugin. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ...