Security bypass vulnerability in Google Chrome via a crafted web site (dpkg)ID: oval:org.secpod.oval:def:17724 | Date: (C)2014-05-08 (M)2022-09-09 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome before 6.0.472.53 and is prone to security bypass vulnerability. A flaw is present in the application, which fails to properly restrict read access to images derived from CANVAS elements. Successful exploitation allows attackers to bypass the Same Origin Policy and obtain potentially sensitive image data.