4.3
CVSSv2

CVE-2016-5207

Published: 19/01/2017 Updated: 05/01/2018
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 385
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

In Blink in Google Chrome before 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android, corruption of the DOM tree could occur during the removal of a full screen element, which allowed a remote malicious user to achieve arbitrary code execution via a crafted HTML page.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

google chrome

Vendor Advisories

An universal XSS flaw was found in the Blink component of the Chromium browser ...
In Blink in Google Chrome prior to 550288375 for Mac, Windows and Linux, and 550288384 for Android, corruption of the DOM tree could occur during the removal of a full screen element, which allowed a remote attacker to achieve arbitrary code execution via a crafted HTML page ...
Synopsis Important: chromium-browser security update Type/Severity Security Advisory: Important Topic An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...
Several security issues were fixed in Oxide ...
Arch Linux Security Advisory ASA-201702-2 ========================================= Severity: High Date : 2017-02-02 CVE-ID : CVE-2016-5182 CVE-2016-5183 CVE-2016-5189 CVE-2016-5199 CVE-2016-5201 CVE-2016-5203 CVE-2016-5204 CVE-2016-5205 CVE-2016-5206 CVE-2016-5207 CVE-2016-5208 CVE-2016-5210 CVE-2016-5211 CVE-201 ...
Arch Linux Security Advisory ASA-201612-3 ========================================= Severity: Critical Date : 2016-12-03 CVE-ID : CVE-2016-5203 CVE-2016-5204 CVE-2016-5205 CVE-2016-5206 CVE-2016-5207 CVE-2016-5208 CVE-2016-5209 CVE-2016-5210 CVE-2016-5211 CVE-2016-5212 CVE-2016-5213 CVE-2016-5214 CVE-2016-5215 CVE ...

Github Repositories

Browser logic vulnerabilities

uxss-db Star the repo, if it was useful for you Any help is highly appreciated, check TODO! uxss-db Intro Webkit Chromium IE/Edge Articles Whitepapers Browser hacking guides and design docs Firefox Tor Brave Chromium Webkit Electron Specs Bounties Misc Scripts Author LICENSE TODO Inspired by js-vuln-db For memory bugs, exploits and other: check awesome-browser-

uxss-db Star the repo, if it was useful for you Any help is highly appreciated, check TODO! uxss-db Intro Webkit Chromium IE/Edge Articles Whitepapers Browser hacking guides and design docs Firefox Tor Brave Chromium Webkit Electron Specs Bounties Misc Scripts Author LICENSE TODO Inspired by js-vuln-db For memory bugs, exploits and other: check awesome-browser-

uxss-db Star the repo, if it was useful for you Any help is highly appreciated, check TODO! uxss-db Intro Webkit Chromium IE/Edge Articles Whitepapers Browser hacking guides and design docs Firefox Tor Brave Chromium Webkit Electron Specs Bounties Misc Scripts Author LICENSE TODO Inspired by js-vuln-db For memory bugs, exploits and other: check awesome-browser-

Here is a collection about Proof of Concepts of Common Vulnerabilities and Exposures, and you may also want to check out current Contents CVE-2011-2856 CVE-2011-3243 CVE-2013-2618 CVE-2013-6632 CVE-2014-1701 CVE-2014-1705 CVE-2014-1747 CVE-2014-3176 CVE-2014-6332 CVE-2014-7927 CVE-2014-7928 CVE-2015-0072 CVE-2015-0235 CVE-2015-0240 CVE-2015-1233 CVE-2015-1242 CVE-2015-1268 CV

Awesome CVE PoC A curated list of CVE PoCs Here is a collection about Proof of Concepts of Common Vulnerabilities and Exposures, and you may also want to check out awesome-web-security Please read the contribution guidelines before contributing This repo is full of PoCs for CVEs If you enjoy this awesome list and would like to support it, check out my Patreon page :

Recent Articles

Google Fixes 12 High-Severity Flaws In Chrome Browser
Threatpost • Tom Spring • 02 Dec 2016

Google is urging Windows, Mac and Linux users to update their Chrome browsers to fix multiple vulnerabilities that could allow malicious third parties to take control of targeted systems.
Released Thursday, Chrome version 55.0.2883.75 for Windows, Mac, and Linux fixes those security issues. It also introduces a number of new features to the browser to enhance the way it handles panning gestures and to support CSS automatic hyphenation.
The United States Computer Emergency Readiness ...