← back
CVE-2010-3246

CVE-2010-3246

EPSS 0.9%
Google Chrome before 6.0.472.53 does not properly handle the _blank value for the target attribute of unspecified elements, which allows remote attackers to bypass the pop-up blocker via unknown vectors.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://code.google.com/p/chromium/issues/detail?id=34414http://googlechromereleases.blogspot.com/2010/09/stable-and-beta-channel-updates.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11752