CVE-2014-3160

high

Description

The ResourceFetcher::canRequest function in core/fetch/ResourceFetcher.cpp in Blink, as used in Google Chrome before 36.0.1985.125, does not properly restrict subresource requests associated with SVG files, which allows remote attackers to bypass the Same Origin Policy via a crafted file.

References

https://src.chromium.org/viewvc/blink?revision=176084&view=revision

https://code.google.com/p/chromium/issues/detail?id=380885

http://www.securityfocus.com/bid/68677

http://www.debian.org/security/2014/dsa-3039

http://security.gentoo.org/glsa/glsa-201408-16.xml

http://secunia.com/advisories/60372

http://secunia.com/advisories/60061

http://googlechromereleases.blogspot.com/2014/07/stable-channel-update.html

Details

Source: Mitre, NVD

Published: 2014-07-20

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High