objects.cc in Google V8 prior to 5.2.361.27, as used in Google Chrome prior to 52.0.2743.82, does not prevent API interceptors from modifying a store target without setting a property, which allows remote malicious users to bypass the Same Origin Policy via a crafted web site.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google chrome |
||
google v8 5.2.360 |