Cross-origin namespace pollution vulnerability in Google Chrome - CVE-2013-2859 (rpm)ID: oval:org.secpod.oval:def:14097 | Date: (C)2013-06-05 (M)2023-11-16 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome before 27.0.1453.110 and is prone to cross-origin namespace pollution vulnerability. A flaws are present in the application, which fails to handle certain unspecified vectors. Successful exploitation allows attackers to bypass the Same Origin Policy and trigger namespace pollution.