content/renderer/device_sensors/device_motion_event_pump.cc in Google Chrome before 41.0.2272.76 does not properly restrict access to high-rate accelerometer data, which makes it easier for remote attackers to capture keystrokes via a crafted web site that listens for ondevicemotion events, a different vulnerability than CVE-2015-1231.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2015-03-09T00:00:00
Updated: 2024-08-07T00:30:46.959Z
Reserved: 2015-03-08T00:00:00
Link: CVE-2011-5319
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2015-03-09T00:59:00.153
Modified: 2015-03-09T17:49:31.927
Link: CVE-2011-5319
Redhat
No data.