Endpoint Vulnerability

Security Vulnerability CVE-2016-1676 for Google Chrome

Description

extensions/renderer/resources/binding.js in the extension bindings in Google Chrome before 51.0.2704.63 does not properly use prototypes, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

Affected Products

Google Chrome

References

CVE-2016-1676,