Same Origin Policy bypass vulnerability in the provisional-load commit implementation in Google Chrome via unspecified vectors (rpm)ID: oval:org.secpod.oval:def:32192 | Date: (C)2015-12-23 (M)2022-08-16 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome before 47.0.2526.73 and is prone to same origin policy bypass vulnerability. The flaw is present in the application, which fails to handle the leveraging of delay in windows proxy clearing. Successful exploitation allows remote attackers to bypass same origin policy.