CVE-2016-5205

Published: Jan 19, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

Blink in Google Chrome prior to 55.0.2883.75 for Linux, Windows and Mac, incorrectly handles deferred page loads, which allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page.

Vendor	Product	Versions
n/a	Google Chrome prior to 55.0.2883.75 for Linux, Windows and Mac	affected `Google Chrome prior to 55.0.2883.75 for Linux, Windows and Mac`

References

RHSA-2016:2919

vendor-advisory

x_refsource_REDHAT

https://crbug.com/646610

x_refsource_CONFIRM

94633

vdb-entry

x_refsource_BID

https://chromereleases.googleblog.com/2016/12/stable-channel-update-for-desktop.html

x_refsource_CONFIRM

GLSA-201612-11

vendor-advisory

x_refsource_GENTOO

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-5205

Description

Affected Products

References