Published: 18/04/2016 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

The WebContentsImpl::FocusLocationBarByDefault function in content/browser/web_contents/web_contents_impl.cc in Google Chrome prior to 50.0.2661.75 mishandles focus for certain about:blank pages, which allows remote malicious users to spoof the address bar via a crafted URL.

Vulnerable Product	Search on Vulmon	Subscribe to Product
debian debian linux 8.0
novell suse package hub for suse linux enterprise 12
opensuse leap 42.1
google chrome

Several vulnerabilities have been discovered in the chromium web browser CVE-2016-1651 An out-of-bounds read issue was discovered in the pdfium library CVE-2016-1652 A cross-site scripting issue was discovered in extension bindings CVE-2016-1653 Choongwoo Han discovered an out-of-bounds write issue in the v8 javascript library ...

The WebContentsImpl::FocusLocationBarByDefault function in content/browser/web_contents/web_contents_implcc in Google Chrome before 500266175 mishandles focus for certain about:blank pages, which allows remote attackers to spoof the address bar via a crafted URL ...

CWE-254 https://crbug.com/567445 http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00050.html http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00049.html http://rhn.redhat.com/errata/RHSA-2016-0638.html https://codereview.chromium.org/1678233003/http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00040.html http://www.debian.org/security/2016/dsa-3549 http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00041.html http://googlechromereleases.blogspot.com/2016/04/stable-channel-update_13.html https://security.gentoo.org/glsa/201605-02 https://nvd.nist.gov https://www.debian.org/security/./dsa-3549

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-1657

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect