Security Advisory

CVE-2016-5134

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-07-23 19:00:00

Last updated 2024-08-06 00:53:47

Assigner Chrome

State PUBLISHED

Description

net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in Google Chrome before 52.0.2743.82 does not ensure that URL information is restricted to a scheme, host, and port, which allows remote attackers to discover credentials by operating a server with a PAC script, a related issue to CVE-2016-3763.

← Browse all CVEs View on cve.org ↗