Drag-and-Drop File Permission Bypass Vulnerability in Google Chrome on Linux

Drag-and-Drop File Permission Bypass Vulnerability in Google Chrome on Linux

CVE-2011-2782 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

The drag-and-drop implementation in Google Chrome before 13.0.782.107 on Linux does not properly enforce permissions for files, which allows user-assisted remote attackers to bypass intended access restrictions via unspecified vectors.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.