Google Chrome before 18.0.1025.151 allows remote attackers to bypass the Same Origin Policy via vectors related to pop-up windows.
The product does not properly verify that the source of data or communication is valid.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Chrome | * | 18.0.1025.151 (excluding) | |
Chromium-browser | Ubuntu | devel | * |
Chromium-browser | Ubuntu | lucid | * |
Chromium-browser | Ubuntu | maverick | * |
Chromium-browser | Ubuntu | natty | * |
Chromium-browser | Ubuntu | oneiric | * |
Chromium-browser | Ubuntu | precise | * |
Chromium-browser | Ubuntu | upstream | * |