The WebContentsImpl::FocusLocationBarByDefault function in content/browser/web_contents/web_contents_impl.cc in Google Chrome prior to 50.0.2661.75 mishandles focus for certain about:blank pages, which allows remote malicious users to spoof the address bar via a crafted URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian debian linux 8.0 |
||
novell suse package hub for suse linux enterprise 12 |
||
opensuse leap 42.1 |
||
google chrome |