XSS Auditor in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed detection of a blocked iframe load, which allowed a remote attacker to brute force JavaScript variables via a crafted HTML page.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2017-04-24T23:00:00

Updated: 2024-08-05T14:47:44.411Z

Reserved: 2017-01-02T00:00:00

Link: CVE-2017-5045

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-04-24T23:59:00.690

Modified: 2024-11-21T03:26:55.957

Link: CVE-2017-5045

cve-icon Redhat

Severity : Moderate

Publid Date: 2017-03-09T00:00:00Z

Links: CVE-2017-5045 - Bugzilla