The Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly maintain own properties, which allows remote attackers to bypass intended access restrictions via crafted JavaScript code that triggers an incorrect cast, related to extensions/renderer/v8_helpers.h and gin/converter.h.
References
Configurations
History
21 Nov 2024, 02:46
Type | Values Removed | Values Added |
---|---|---|
References | () http://googlechromereleases.blogspot.com/2016/03/stable-channel-update.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00014.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00015.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00018.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00028.html - | |
References | () http://www.debian.org/security/2016/dsa-3507 - | |
References | () http://www.securityfocus.com/bid/84008 - | |
References | () http://www.securitytracker.com/id/1035185 - | |
References | () https://code.google.com/p/chromium/issues/detail?id=549986 - | |
References | () https://codereview.chromium.org/1433293004 - | |
References | () https://security.gentoo.org/glsa/201603-09 - |
07 Nov 2023, 02:30
Type | Values Removed | Values Added |
---|---|---|
References | () https://security.gentoo.org/glsa/201603-09 - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00028.html - | |
References | () http://www.securityfocus.com/bid/84008 - | |
References | () https://codereview.chromium.org/1433293004 - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00014.html - | |
References | () http://googlechromereleases.blogspot.com/2016/03/stable-channel-update.html - | |
References | () https://code.google.com/p/chromium/issues/detail?id=549986 - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00015.html - | |
References | () http://www.debian.org/security/2016/dsa-3507 - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00018.html - | |
References | () http://www.securitytracker.com/id/1035185 - |
Information
Published : 2016-03-06 02:59
Updated : 2024-11-21 02:46
NVD link : CVE-2016-1632
Mitre link : CVE-2016-1632
CVE.ORG link : CVE-2016-1632
JSON object : View
Products Affected
- chrome
CWE
CWE-264
Permissions, Privileges, and Access Controls