The WebContentsImpl::AttachInterstitialPage function in content/browser/web_contents/web_contents_impl.cc in Google Chrome before 31.0.1650.48 does not cancel JavaScript dialogs upon generating an interstitial warning, which allows remote attackers to spoof the address bar via a crafted web site.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2013-11-13T15:00:00
Updated: 2024-08-06T17:46:22.176Z
Reserved: 2013-11-05T00:00:00
Link: CVE-2013-6626
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-11-13T15:55:04.347
Modified: 2017-09-19T01:36:55.623
Link: CVE-2013-6626
Redhat
No data.