Google Chrome Cross Site Scripting Filter Bypass Vulnerability
Publish Date: 16 de czerwca de 2016
Severity: : Medium
Advisory Date: 16 de czerwca de 2016
DESCRIPTION
A policy bypass vulnerability exists in Google Chrome due to improper handling of script tags within svg tags. A remote attacker can exploit this vulnerability by enticing a user to follow a crafted URL. Successful exploitation will result in bypassing the XSSAuditor feature.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1006883