Vulnerability & Exploit Database

Displaying all 7 entries

Results for: CVE-2016-5134 Back to search

Ubuntu: USN-3041-1 (CVE-2016-5134): Oxide vulnerabilities Vulnerability

  • Severity: 4
  • Published: July 23, 2016

net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in Google Chrome before 52.0.2743.82 does not ensure that URL information is restricted to a scheme, host, and port, which allows remote attackers to discover credentials by operating a server with a PAC script, a related issue to CVE-2016-3763.

SUSE: CVE-2016-5134: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: July 23, 2016

net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in Google Chrome before 52.0.2743.82 does not ensure that URL information is restricted to a scheme, host, and port, which allows remote attackers to discover credentials by operating a server with a PAC script, a related issue to CVE-2016-3763.

Red Hat: CVE-2016-5134: Important: chromium-browser security update (RHSA-2016:1485) Vulnerability

  • Severity: 4
  • Published: July 23, 2016

net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in Google Chrome before 52.0.2743.82 does not ensure that URL information is restricted to a scheme, host, and port, which allows remote attackers to discover credentials by operating a server with a PAC script, a related issue to CVE-2016-3763.

Google Chrome Vulnerability: CVE-2016-5134 Vulnerability

  • Severity: 4
  • Published: July 23, 2016

net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in Google Chrome before 52.0.2743.82 does not ensure that URL information is restricted to a scheme, host, and port, which allows remote attackers to discover credentials by operating a server with a PAC script, a related issue to CVE-2016-3763.

Gentoo Linux: CVE-2016-5134: Chromium: Multiple vulnerabilities Vulnerability

  • Severity: 4
  • Published: July 23, 2016

net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in Google Chrome before 52.0.2743.82 does not ensure that URL information is restricted to a scheme, host, and port, which allows remote attackers to discover credentials by operating a server with a PAC script, a related issue to CVE-2016-3763.

FreeBSD: chromium -- multiple vulnerabilities (Multiple CVEs) Vulnerability

  • Severity: 9
  • Published: July 23, 2016

The PPAPI implementation in Google Chrome before 52.0.2743.82 does not validate the origin of IPC messages to the plugin broker process that should have come from the browser process, which allows remote attackers to bypass a sandbox protection mechanism via an unexpected message type, related to broker_process_dispatcher.cc, ppapi_plugi...

Debian: CVE-2016-5134: chromium-browser -- security update Vulnerability

  • Severity: 4
  • Published: July 23, 2016

net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in Google Chrome before 52.0.2743.82 does not ensure that URL information is restricted to a scheme, host, and port, which allows remote attackers to discover credentials by operating a server with a PAC script, a related issue to CVE-2016-3763.