FKIE_CVE-2016-5173

Vulnerability from fkie_nvd - Published: 2016-09-25 20:59 - Updated: 2025-04-12 10:46
Severity ?
7.1 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Summary
The extensions subsystem in Google Chrome before 53.0.2785.113 does not properly restrict access to Object.prototype, which allows remote attackers to load unintended resources, and consequently trigger unintended JavaScript function calls and bypass the Same Origin Policy via an indirect interception attack.
References
chrome-cve-admin@google.comhttp://rhn.redhat.com/errata/RHSA-2016-1905.html
chrome-cve-admin@google.comhttp://www.debian.org/security/2016/dsa-3667
chrome-cve-admin@google.comhttp://www.securityfocus.com/bid/92942
chrome-cve-admin@google.comhttp://www.securitytracker.com/id/1036826
chrome-cve-admin@google.comhttps://codereview.chromium.org/1840453002
chrome-cve-admin@google.comhttps://crbug.com/468931
chrome-cve-admin@google.comhttps://crbug.com/471523
chrome-cve-admin@google.comhttps://crbug.com/497507
chrome-cve-admin@google.comhttps://googlechromereleases.blogspot.com/2016/09/stable-channel-update-for-desktop_13.html
chrome-cve-admin@google.comhttps://security.gentoo.org/glsa/201610-09
af854a3a-2127-422b-91ae-364da2661108http://rhn.redhat.com/errata/RHSA-2016-1905.html
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2016/dsa-3667
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/92942
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1036826
af854a3a-2127-422b-91ae-364da2661108https://codereview.chromium.org/1840453002
af854a3a-2127-422b-91ae-364da2661108https://crbug.com/468931
af854a3a-2127-422b-91ae-364da2661108https://crbug.com/471523
af854a3a-2127-422b-91ae-364da2661108https://crbug.com/497507
af854a3a-2127-422b-91ae-364da2661108https://googlechromereleases.blogspot.com/2016/09/stable-channel-update-for-desktop_13.html
af854a3a-2127-422b-91ae-364da2661108https://security.gentoo.org/glsa/201610-09
Impacted products
Vendor Product Version
google chrome *
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC271026-1CD7-42F7-8754-1C5144AD590B",
              "versionEndIncluding": "53.0.2785.101",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The extensions subsystem in Google Chrome before 53.0.2785.113 does not properly restrict access to Object.prototype, which allows remote attackers to load unintended resources, and consequently trigger unintended JavaScript function calls and bypass the Same Origin Policy via an indirect interception attack."
    },
    {
      "lang": "es",
      "value": "El subsistema de extensiones en Google Chrome en versiones anteriores a 53.0.2785.113 no restringe adecuadamente el acceso a Object.prototype, lo que permite a atacantes remotos cargar recursos no intencionados y consecuentemente desencadenar llamas de funci\u00f3n JavaScript no intencionadas y eludir la Same Origin Policy a trav\u00e9s de un ataque de interceptaci\u00f3n indirecto."
    }
  ],
  "id": "CVE-2016-5173",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 7.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 3.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2016-09-25T20:59:05.807",
  "references": [
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://rhn.redhat.com/errata/RHSA-2016-1905.html"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://www.debian.org/security/2016/dsa-3667"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://www.securityfocus.com/bid/92942"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://www.securitytracker.com/id/1036826"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "https://codereview.chromium.org/1840453002"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "https://crbug.com/468931"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "https://crbug.com/471523"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "https://crbug.com/497507"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "https://googlechromereleases.blogspot.com/2016/09/stable-channel-update-for-desktop_13.html"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "https://security.gentoo.org/glsa/201610-09"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2016-1905.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2016/dsa-3667"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/92942"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1036826"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://codereview.chromium.org/1840453002"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://crbug.com/468931"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://crbug.com/471523"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://crbug.com/497507"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://googlechromereleases.blogspot.com/2016/09/stable-channel-update-for-desktop_13.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://security.gentoo.org/glsa/201610-09"
    }
  ],
  "sourceIdentifier": "chrome-cve-admin@google.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-284"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.