CVE-2013-2881 Information

Description

Google Chrome before 28.0.1500.95 does not properly handle frames which allows remote attackers to bypass the Same Origin Policy via a crafted web site.

Reference

http://googlechromereleases.blogspot.com/2013/07/stable-channel-update_30.html http://www.debian.org/security/2013/dsa-2732 https://code.google.com/p/chromium/issues/detail?id=257748 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A17348 https://src.chromium.org/viewvc/blink?revision=153929&view=revision