CVE-2012-2848 Information

Description

The drag-and-drop implementation in Google Chrome before 21.0.1180.57 on Mac OS X and Linux and before 21.0.1180.60 on Windows and Chrome Frame allows user-assisted remote attackers to bypass intended file access restrictions via a crafted web site.

Reference

http://code.google.com/p/chromium/issues/detail?id=127525 http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A15658