virus logo FortiClient Vulnerability

Google Chrome CVE-2013-6666 Weak Authentication Vulnerability

description-logoDescription

The PepperFlashRendererHost::OnNavigate function in renderer/pepper/pepper_flash_renderer_host.cc in Google Chrome before 33.0.1750.146 does not verify that all headers are Cross-Origin Resource Sharing (CORS) simple headers before proceeding with a PPB_Flash.Navigate operation, which might allow remote attackers to bypass intended CORS restrictions via an inappropriate header.

affected-products-logoAffected Applications

Google Chrome

CVE References

CVE-2013-6666

Other References

https://chromereleases.googleblog.com/search/label/Stable%20updates
ID 47778
Created Jan 17, 2020
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor Google
Patch manual
Application Google Chrome