Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2016-1677

Published: 05/06/2016 Updated: 07/11/2023
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Subscribe to Google

Vulnerability Summary

uri.js in Google V8 prior to 5.1.281.26, as used in Google Chrome prior to 51.0.2704.63, uses an incorrect array type, which allows remote malicious users to obtain sensitive information by calling the decodeURI function and leveraging "type confusion."

Vulnerable Product Search on Vulmon Subscribe to Product

google chrome

debian debian linux 8.0

canonical ubuntu linux 16.04

canonical ubuntu linux 15.10

redhat enterprise linux desktop 6.0

canonical ubuntu linux 14.04

redhat enterprise linux server 6.0

redhat enterprise linux workstation 6.0

suse linux enterprise 12.0

opensuse leap 42.1

opensuse opensuse 13.2

google v8

Vendor Advisories

Ubuntu Security Notice: oxide-qt vulnerabilities
Several security issues were fixed in Oxide ...
Red Hat: CVE-2016-1677
urijs in Google V8 before 5128126, as used in Google Chrome before 510270463, uses an incorrect array type, which allows remote attackers to obtain sensitive information by calling the decodeURI function and leveraging "type confusion" ...

Github Repositories

https://github.com/lcatro/browser_vuln_check

browser_vuln_check ,利用已知的浏览器漏洞PoC 来快速检测Webview 和浏览器环境是否存在安全漏洞,只需要访问run.html 即可获取所有扫描结果,适用场景包含:APP 发布之前的内部安全测试,第三方Webview 漏洞检测等(browser_vuln_check framework using some known browser vulnerabilities PoC to quick automate aduit WebView or Browser security ,apply to application security before issue and detecting third-part WebView security)..

browser_vuln_check browser_vuln_check 利用已知的浏览器漏洞PoC 来快速检测Webview 和浏览器是否存在安全漏洞,帮助产品上线之前检测公开的CVE 漏洞,减少外报漏洞漏水报告 怎么使用 如果你的电脑上没有安装tornado 库,第一步先安装目录/depandent_python_lib 下的setuptools-2860 ,然后再安装tornado-master 检

References

CWE-200https://crbug.com/602970http://www.securityfocus.com/bid/90876https://codereview.chromium.org/1936083002http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00005.htmlhttp://www.securitytracker.com/id/1035981http://www.debian.org/security/2016/dsa-3590http://googlechromereleases.blogspot.com/2016/05/stable-channel-update_25.htmlhttp://www.ubuntu.com/usn/USN-2992-1http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00062.htmlhttps://access.redhat.com/errata/RHSA-2016:1190https://security.gentoo.org/glsa/201607-07http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00063.htmlhttps://usn.ubuntu.com/2992-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook