Heap-based Buffer Overflow in Google Chrome Affects Various Versions
CVE-2016-1689

6.5MEDIUM

What is CVE-2016-1689?

A heap-based buffer overflow vulnerability exists in content/renderer/media/canvas_capture_handler.cc of Google Chrome before version 51.0.2704.63. This flaw allows remote attackers to exploit crafted websites to potentially cause a denial of service or introduce unspecified impacts. Users are advised to upgrade to the latest version of Google Chrome to mitigate the risk associated with this vulnerability.

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.