Endpoint Vulnerability

Security Vulnerability CVE-2014-1716 for Google Chrome

Description

Cross-site scripting (XSS) vulnerability in the Runtime_SetPrototype function in runtime.cc in Google V8, as used in Google Chrome before 34.0.1847.116, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka \'Universal XSS (UXSS).\'

Affected Products

Google Chrome

References

CVE-2014-1716,