Endpoint Vulnerability

Security Vulnerability CVE-2016-1679 for Google Chrome

Description

The ToV8Value function in content/child/v8_value_converter_impl.cc in the V8 bindings in Google Chrome before 51.0.2704.63 does not properly restrict use of getters and setters, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted JavaScript code.

Affected Products

Google Chrome

References

CVE-2016-1679,