Bypassing Same Origin Policy in Google Chrome

Bypassing Same Origin Policy in Google Chrome

CVE-2011-2878 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Google Chrome before 14.0.835.202 does not properly restrict access to the window prototype, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

Learn more about our Cis Benchmark Audit For Google Chrome.