The LocalFrame::isURLAllowed function in core/frame/LocalFrame.cpp in Blink, as used in Google Chrome before 44.0.2403.89, does not properly check for a page's maximum number of frames, which allows remote attackers to cause a denial of service (invalid count value and use-after-free) or possibly have unspecified other impact via crafted JavaScript code that makes many createElement calls for IFRAME elements.
Metrics
Affected Vendors & Products
Advisories
| Source | ID | Title |
|---|---|---|
Debian DSA |
DSA-3315-1 | chromium-browser security update |
EUVD |
EUVD-2015-1425 | The LocalFrame::isURLAllowed function in core/frame/LocalFrame.cpp in Blink, as used in Google Chrome before 44.0.2403.89, does not properly check for a page's maximum number of frames, which allows remote attackers to cause a denial of service (invalid count value and use-after-free) or possibly have unspecified other impact via crafted JavaScript code that makes many createElement calls for IFRAME elements. |
Ubuntu USN |
USN-2677-1 | Oxide vulnerabilities |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Wed, 16 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Status: PUBLISHED
Assigner: Chrome
Published:
Updated: 2024-08-06T04:40:18.677Z
Reserved: 2015-01-21T00:00:00
Link: CVE-2015-1284
No data.
Status : Deferred
Published: 2015-07-23T00:59:13.587
Modified: 2025-04-12T10:46:40.837
Link: CVE-2015-1284
OpenCVE Enrichment
No data.
Debian DSA
EUVD
Ubuntu USN