Endpoint Vulnerability

Security Vulnerability CVE-2014-1703 for Google Chrome

Description

Use-after-free vulnerability in the WebSocketDispatcherHost::SendOrDrop function in content/browser/renderer_host/websocket_dispatcher_host.cc in the Web Sockets implementation in Google Chrome before 33.0.1750.149 might allow remote attackers to bypass the sandbox protection mechanism by leveraging an incorrect deletion in a certain failure case.

Affected Products

Google Chrome

References

CVE-2014-1703,