Security bypass vulnerability in Google Chrome via vectors involving a blocked plug-in (dpkg)ID: oval:org.secpod.oval:def:9489 | Date: (C)2013-03-09 (M)2022-10-10 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome before 25.0.1364.152 and is prone to security bypass vulnerability. A flaw is present in the application, which fails to properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in. Successful exploitation could allow attackers to bypass intended access restrictions via vectors involving a blocked plug-in.