Vulnerability CVE-2016-5173

Vulnerability Name:

CVE-2016-5173 (CCN-116812)

Assigned:

2016-09-13

Published:

2016-09-13

Updated:

2018-01-05

Summary:

The extensions subsystem in Google Chrome before 53.0.2785.113 does not properly restrict access to Object.prototype, which allows remote attackers to load unintended resources, and consequently trigger unintended JavaScript function calls and bypass the Same Origin Policy via an indirect interception attack.

CVSS v3 Severity:

7.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L)
6.2 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

4.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N)
3.8 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-284

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2016-5173

Source: CCN
Type: Google Chrome Releases Web site
Stable Channel Update for Desktop

Source: CCN
Type: RHSA-2016-1905
Important: chromium-browser security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1905

Source: DEBIAN
Type: UNKNOWN
DSA-3667

Source: BID
Type: UNKNOWN
92942

Source: CCN
Type: BID-92942
Google Chrome Prior to 53.0.2785.113 Multiple Security Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1036826

Source: CONFIRM
Type: Issue Tracking, Patch
https://codereview.chromium.org/1840453002

Source: CONFIRM
Type: Issue Tracking, Patch
https://crbug.com/468931

Source: MISC
Type: Issue Tracking, Patch
https://crbug.com/471523

Source: MISC
Type: Issue Tracking, Patch
https://crbug.com/497507

Source: XF
Type: UNKNOWN
google-chrome-cve20165173-sec-bypass(116812)

Source: CONFIRM
Type: Vendor Advisory
https://googlechromereleases.blogspot.com/2016/09/stable-channel-update-for-desktop_13.html

Source: GENTOO
Type: UNKNOWN
GLSA-201610-09

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2016-5173

Vulnerable Configuration:

Configuration 1:

cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version <= 53.0.2785.101)

Configuration CCN 1:

cpe:/o:redhat:enterprise_linux_server_supplementary:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation_supplementary:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop_supplementary:6:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20165173	V	CVE-2016-5173	2022-06-30
oval:org.opensuse.security:def:112065	P	chromedriver-55.0.2883.75-3.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:105614	P	chromedriver-55.0.2883.75-3.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:25444	P	Security update for sysstat (Moderate)	2020-12-01
oval:org.opensuse.security:def:24870	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:25643	P	Security update for hunspell (Low)	2020-12-01
oval:org.opensuse.security:def:25153	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25497	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:24881	P	Security update for openssl-1_0_0 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26281	P	Security update for hexchat (Moderate)	2020-12-01
oval:org.opensuse.security:def:25210	P	Security update for unzip (Moderate)	2020-12-01
oval:org.opensuse.security:def:25585	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:24945	P	Security update for vim (Important)	2020-12-01
oval:org.opensuse.security:def:26316	P	Recommended update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:25294	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:25599	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25072	P	Security update for aspell (Moderate)	2020-12-01
oval:org.cisecurity:def:1213	P	DSA-3667-1 -- chromium-browser -- security update	2016-11-10
oval:org.cisecurity:def:1197	V	The extensions subsystem in Google Chrome before 53.0.2785.113 does not properly restrict access to Object.prototype - CVE-2016-5173	2016-10-28
oval:com.ubuntu.precise:def:20165173000	V	CVE-2016-5173 on Ubuntu 12.04 LTS (precise) - medium.	2016-09-25
oval:com.ubuntu.trusty:def:20165173000	V	CVE-2016-5173 on Ubuntu 14.04 LTS (trusty) - medium.	2016-09-25
oval:com.ubuntu.xenial:def:20165173000	V	CVE-2016-5173 on Ubuntu 16.04 LTS (xenial) - medium.	2016-09-25
oval:com.ubuntu.xenial:def:201651730000000	V	CVE-2016-5173 on Ubuntu 16.04 LTS (xenial) - medium.	2016-09-25

BACK