Oval Definition:oval:org.cisecurity:def:994
Revision Date:2016-09-16Version:28
Title:Parameter sanitization failure in DevTools - CVE-2016-5143
Description:The Developer Tools (aka DevTools) subsystem in Blink, as used in Google Chrome before 52.0.2743.116, mishandles the script-path hostname, remoteBase parameter, and remoteFrontendUrl parameter, which allows remote attackers to bypass intended access restrictions via a crafted URL, a different vulnerability than CVE-2016-5144.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2016-5143
Platform(s):Microsoft Windows 10
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Product(s):Google Chrome
Definition Synopsis
  • Google Chrome is installed
  • AND Check if Google Chrome version is less than 52.0.2743.116
  • BACK