CVE-2015-1274 : Google Chrome before 44.0.2403.89 does not ensure that the auto-open list omits

Google Chrome before 44.0.2403.89 does not ensure that the auto-open list omits all dangerous file types, which makes it easier for remote attackers to execute arbitrary code by providing a crafted file and leveraging a user's previous "Always open files of this type" choice, related to download_commands.cc and download_prefs.cc.

Published 2015-07-23 00:59:04

Updated 2025-04-12 10:46:41

Source Chrome

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2015-1274

Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Desktop Supplementary » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server Supplementary » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_server_supplementary:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server Supplementary » Version: 6.7.z
cpe:2.3:o:redhat:enterprise_linux_server_supplementary:6.7.z:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Workstation Supplementary » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_workstation_supplementary:6.0:*:*:*:*:*:*:*
Matching versions
Google » Chrome
Versions up to, including, (<=) 43.0.2357.134
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.2
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.1
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2015-1274

EPSS FAQ

2.53%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 84 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2015-1274

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2015-1274

CWE-254

Assigned by: nvd@nist.gov (Primary)

References for CVE-2015-1274

http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00038.html

[security-announce] openSUSE-SU-2015:1287-1: important: Security update

CVEs referencing this url
https://code.google.com/p/chromium/issues/detail?id=461858

461858 - Chrome allows "Always open files of this type" to be used with executables - chromium - Monorail
http://www.debian.org/security/2015/dsa-3315

Debian -- Security Information -- DSA-3315-1 chromium-browser

CVEs referencing this url
https://codereview.chromium.org/1165893004/

Issue 1165893004: [Downloads] Prevent dangerous files from being opened automatically. - Code Review
https://security.gentoo.org/glsa/201603-09

Chromium: Multiple vulnerabilities (GLSA 201603-09) — Gentoo security

CVEs referencing this url
http://www.securitytracker.com/id/1033031

Google Chrome Multiple Bugs Let Remote Users Execute Arbitrary Code, Bypass Same-Origin Restrictions, Obtain Potentially Sensitive Information, and Spoof URLs - SecurityTracker

CVEs referencing this url
http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html

Chrome Releases: Stable Channel Update

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2015-1499.html

RHSA-2015:1499 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
http://www.securityfocus.com/bid/75973

Google Chrome Prior to 44.0.2403.89 Multiple Security Vulnerabilities

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2015-1274

Products affected by CVE-2015-1274

Exploit prediction scoring system (EPSS) score for CVE-2015-1274

CVSS scores for CVE-2015-1274

CWE ids for CVE-2015-1274

References for CVE-2015-1274