core/rendering/compositing/RenderLayerCompositor.cpp in Blink, as used in Google Chrome before 38.0.2125.102 on Android, does not properly handle a certain IFRAME overflow condition, which allows remote attackers to spoof content via a crafted web site that interferes with the scrollbar.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Chrome
Published: 2014-10-10T01:00:00
Updated: 2024-08-06T10:35:57.068Z
Reserved: 2014-05-03T00:00:00
Link: CVE-2014-3201
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-10-10T01:55:08.680
Modified: 2023-11-07T02:20:05.040
Link: CVE-2014-3201
Redhat
No data.