Information disclosure vulnerability in Google Chrome via crafted JavaScript code (dpkg)ID: oval:org.secpod.oval:def:3399 | Date: (C)2011-12-09 (M)2023-11-13 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome 15.0.874.121 or earlier and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts. Successful exploitation could allow attackers to determine whether a document exists in the browser cache.