CVE-2016-5207 Information
Feb 14, 2021
cve
Description
In Blink in Google Chrome prior to 55.0.2883.75 for Mac Windows and Linux and 55.0.2883.84 for Android corruption of the DOM tree could occur during the removal of a full screen element which allowed a remote attacker to achieve arbitrary code execution via a crafted HTML page.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Reference
http://rhn.redhat.com/errata/RHSA-2016-2919.html http://www.securityfocus.com/bid/94633 https://chromereleases.googleblog.com/2016/12/stable-channel-update-for-desktop.html https://crbug.com/655904 https://security.gentoo.org/glsa/201612-11
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
REQUIRED
Confidentiality Impact
CHANGED
Integrity Impact
LOW
Availability Impact
LOW
Base Score
NONE
Base Severity
6.1
Share on: