Endpoint Vulnerability

Security Vulnerability CVE-2013-2908 for Google Chrome

Description

Google Chrome before 30.0.1599.66 uses incorrect function calls to determine the values of NavigationEntry objects, which allows remote attackers to spoof the address bar via vectors involving a response with a 204 (aka No Content) status code.

Affected Products

Google Chrome

References

CVE-2013-2908,