Endpoint Vulnerability

Security Vulnerability CVE-2015-6779 for Google Chrome

Description

PDFium, as used in Google Chrome before 47.0.2526.73, does not properly restrict use of chrome: URLs, which allows remote attackers to bypass intended scheme restrictions via a crafted PDF document, as demonstrated by a document with a link to a chrome://settings URL.

Affected Products

Google Chrome

References

CVE-2015-6779,