Vulnerability Details : CVE-2015-1261
android/java/src/org/chromium/chrome/browser/WebsiteSettingsPopup.java in Google Chrome before 43.0.2357.65 on Android does not properly restrict use of a URL's fragment identifier during construction of a page-info popup, which allows remote attackers to spoof the URL bar or deliver misleading popup content via crafted text.
Vulnerability category: Input validation
Products affected by CVE-2015-1261
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:*:*:*:*:*:android:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-1261
0.37%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 69 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-1261
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:P/A:N |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2015-1261
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-1261
-
http://www.securityfocus.com/bid/74723
Google Chrome Prior to 43.0.2357.65 Multiple Security Vulnerabilities
-
http://www.securitytracker.com/id/1032375
Google Chrome Multiple Bugs Let Remote Users Execute Arbitrary Code, Bypass Same-Origin Restrictions, and Spoof URLs - SecurityTracker
-
https://code.google.com/p/chromium/issues/detail?id=466351
466351 - Security: On Android, it's possible to inject text and icons to the page info bubble using crafted URL fragments - chromium - Monorail
-
http://www.debian.org/security/2015/dsa-3267
Debian -- Security Information -- DSA-3267-1 chromium-browser
-
https://codereview.chromium.org/1056743002
Issue 1056743002: Improve whitespace matching for encoding Android page info popup URLs. - Code Review
-
http://googlechromereleases.blogspot.com/2015/05/stable-channel-update_19.html
Chrome Releases: Stable Channel UpdatePatch;Vendor Advisory
-
https://codereview.chromium.org/1011383005
Issue 1011383005: Percent-encode illegal characters in Android page info popup URL - Code Review
-
http://lists.opensuse.org/opensuse-updates/2015-11/msg00015.html
openSUSE-SU-2015:1877-1: moderate: Security update for Chromium
-
https://codereview.chromium.org/1077483002
Issue 1077483002: Truncate long URL fragments in Android page info popup - Code Review
-
http://lists.opensuse.org/opensuse-updates/2015-05/msg00091.html
Object not found!
Jump to