CVE-2009-3934

CVE-2009-3934 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The WebFrameLoaderClient::dispatchDidChangeLocationWithinPage function in src/webkit/glue/webframeloaderclient_impl.cc in Google Chrome before 3.0.195.32 allows user-assisted remote attackers to cause a denial of service via a page-local link, related to an "empty redirect chain," as demonstrated by a message in Yahoo! Mail.

Learn more about our Cis Benchmark Audit For Google Chrome.