FortiClient Vulnerability

Google Chrome CVE-2014-3170 Weak Authentication Vulnerability

Description

extensions/common/url_pattern.cc in Google Chrome before 37.0.2062.94 does not prevent use of a \'\\0\' character in a host name, which allows remote attackers to spoof the extension permission dialog by relying on truncation after this character.

Affected Applications

Google Chrome

CVE References

CVE-2014-3170

Other References

https://chromereleases.googleblog.com/search/label/Stable%20updates

ID	21659
Created	Jul 11, 2018
Description Updated	Dec 19, 2023
Risk
Coverage	FortiClient
OS	Windows
Vendor	Google
Patch	manual
Application	Google Chrome

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Google Chrome CVE-2014-3170 Weak Authentication Vulnerability

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Google Chrome CVE-2014-3170 Weak Authentication Vulnerability

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center