Google Chrome Blink password protection Bypass Vulnerability (CVE-2016-1618)
Google Chrome Blink password protection Bypass Vulnerability (CVE-2016-1618)
Release date:
Updated on:
Affected Systems:
Google Chrome <48.0.2564.82
Description:
CVE (CAN) ID: CVE-2016-1618
Google Chrome is a Web browser tool developed by Google.
In versions earlier than Google Chrome 48.0.2564.82, Blink does not ensure that the appropriate cryptographicallyRandomValues random number generator is used. Remote attackers can exploit this vulnerability to bypass password protection.
<* Source: Google
*>
Suggestion:
Vendor patch:
Google
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://googlechromereleases.blogspot.com/2016/01/stable-channel-update_20.html
Https://code.google.com/p/chromium/issues/detail? Id = 552749
Https://codereview.chromium.org/1419293005
This article permanently updates the link address: