CVE-2011-1435 Information

Description

Google Chrome before 11.0.696.57 does not properly implement the tabs permission for extensions which allows remote attackers to read local files via a crafted extension.

Reference

http://code.google.com/p/chromium/issues/detail?id=72523 http://googlechromereleases.blogspot.com/2011/04/chrome-stable-update.html https://exchange.xforce.ibmcloud.com/vulnerabilities/67142 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A14586