4 matches found
EUVD-2016-6092
Malware in sbrugna...
Chrome Universal XSS using an intercepted native function (CVE-2016-1672)
VULNERABILITY DETAILS The fix for the issue 546677 is insufficient to protect against overriding the internal extensions code -- it is still possible to take over the built-in extension system with a combination of getters and setters. This allows web content to gain access to native functions th...
CVE-2016-5141
Removed by vendor...
CVE-2016-5141
Blink, as used in Google Chrome before 52.0.2743.116, allows remote attackers to spoof the address bar via vectors involving a provisional URL for an initially empty document, related to FrameLoader.cpp and ScopedPageLoadDeferrer.cpp...