CVE-2011-3054 Information
Description
The WebUI privilege implementation in Google Chrome before 17.0.963.83 does not properly perform isolation which allows remote attackers to bypass intended access restrictions via unspecified vectors.
Reference
http://code.google.com/p/chromium/issues/detail?id=117418 http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00000.html http://osvdb.org/80292 http://secunia.com/advisories/48512 http://secunia.com/advisories/48527 http://security.gentoo.org/glsa/glsa-201203-19.xml http://www.securityfocus.com/bid/52674 http://www.securitytracker.com/id?1026841 https://exchange.xforce.ibmcloud.com/vulnerabilities/74214 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A15028
Share on: