Endpoint Vulnerability

Security Vulnerability CVE-2014-1748 for Google Chrome

Description

The ScrollView::paint function in platform/scroll/ScrollView.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to spoof the UI by extending scrollbar painting into the parent frame.

Affected Products

Google Chrome

References

CVE-2014-1748,