Endpoint Vulnerability

Security Vulnerability CVE-2015-1237 for Google Chrome

Description

Use-after-free vulnerability in the RenderFrameImpl::OnMessageReceived function in content/renderer/render_frame_impl.cc in Google Chrome before 42.0.2311.90 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger renderer IPC messages during a detach operation.

Affected Products

Google Chrome

References

CVE-2015-1237,