Improper Handling of javascript: URLs in Google Chrome Allows Cookie Reading

Improper Handling of javascript: URLs in Google Chrome Allows Cookie Reading

CVE-2011-3887 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Google Chrome before 15.0.874.102 does not properly handle javascript: URLs, which allows remote attackers to bypass intended access restrictions and read cookies via unspecified vectors.

Learn more about our Cis Benchmark Audit For Google Chrome.