Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2015-3336
Description:Google Chrome before 42.0.2311.90 does not always ask the user before proceeding with CONTENT_SETTINGS_TYPE_FULLSCREEN and CONTENT_SETTINGS_TYPE_MOUSELOCK changes, which allows user-assisted remote attackers to cause a denial of service (UI disruption) by constructing a crafted HTML document containing JavaScript code with requestFullScreen and requestPointerLock calls, and arranging for the user to access this document with a file: URL.
Test IDs: 1.3.6.1.4.1.25623.1.0.703238  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-3336
BugTraq ID: 74227
http://www.securityfocus.com/bid/74227
Debian Security Information: DSA-3238 (Google Search)
http://www.debian.org/security/2015/dsa-3238
SuSE Security Announcement: openSUSE-SU-2015:0748 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-04/msg00040.html




© 1998-2024 E-Soft Inc. All rights reserved.