Google Chrome bypass access restriction Vulnerability (CVE-2015-1266)

Google Chrome bypass access restriction Vulnerability (CVE-2015-1266)
Google Chrome bypass access restriction Vulnerability (CVE-2015-1266)

Release date:
Updated on:

Affected Systems:

Google Chrome < 43.0.2357.130

Description:

CVE (CAN) ID: CVE-2015-1266

Google Chrome is a Web browser tool developed by Google.

In versions earlier than Google Chrome 43.0.2357.130, content/browser/webui/content_web_ui_controller_factory.cc does not correctly determine whether the URL is related to WebUI SiteInstance. Remote attackers can exploit this vulnerability to bypass access restrictions.

<* Source: anonymous
*>

Suggestion:

Vendor patch:

Google
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:

Http://googlechromereleases.blogspot.com/2015/06/chrome-stable-update.html
Https://code.google.com/p/chromium/issues/detail? Id = 464922
Https://codereview.chromium.org/1129123004/

Install Google Chrome in Ubuntu 14.04 LTS

Solution to Chrome dependency installation in Ubuntu 13.04

Install Chrome in openSUSE

Install Google Chrome 35 Beta for Linux Users

Install Google Chrome in CentOS 6.x

Chrome details: click here
Chrome: click here

This article permanently updates the link address: