CVE-2016-10624
CVE-2016-10624
In short
The selenium-chromedriver utility downloads files over unencrypted HTTP instead of secure HTTPS, allowing attackers on the network to intercept and replace the downloaded binary with malicious code, potentially taking control of your computer.
Technical detail
selenium-chromedriver uses unencrypted HTTP for binary downloads, enabling man-in-the-middle attacks where an attacker positioned on the network path can intercept and substitute the legitimate binary with a malicious one. Successful exploitation requires network access between the victim and the server and can result in arbitrary remote code execution with the privileges of the user running the tool.
Summary generated and translated by AI from the official description.
selenium-chromedriver is a simple utility for downloading the Selenium Webdriver for Google Chrome selenium-chromedriver downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.
Affected products
HackerOne · selenium-chromedriver node moduleWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://nodesecurity.io/advisories/222