CVE-2016-5196 - The content renderer client in Google Chrome prior to 54.0.2840.85 for Android insufficiently enforc

CVE-2016-5196

Summary

The content renderer client in Google Chrome prior to 54.0.2840.85 for Android insufficiently enforced the Same Origin Policy amongst downloaded files, which allowed a remote attacker to access any downloaded file and interact with sites, including those the user was logged into, via a crafted HTML page.

References

Vulnerable Configurations

cpe:2.3:a:google:chrome:38.0.2125.101:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:38.0.2125.101:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:40.0.2214.89:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:40.0.2214.89:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:40.0.2214.109:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:40.0.2214.109:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:42.0.2311.107:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:42.0.2311.107:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:54.0.2840.68:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:54.0.2840.68:*:*:*:*:android:*:*

CVSS

Base:	6.8 (as of 20-01-2017 - 13:36)
Impact:
Exploitability:

CWE

CWE-254

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

refmap via4

bid	94078
confirm	https://chromereleases.googleblog.com/2016/10/chrome-for-android-update_31.html https://crbug.com/659492

Last major update

20-01-2017 - 13:36

Published

19-01-2017 - 05:59

Last modified

20-01-2017 - 13:36