1. Home
  2. CVE Database
  3. CVE-2016-1697
HIGH · 8.8

CVE-2016-1697

The FrameLoader::startLoad function in WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 51.0.2704.79, does not prevent frame navigations during DocumentLoader detach...

Vulnerability Description

The FrameLoader::startLoad function in WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 51.0.2704.79, does not prevent frame navigations during DocumentLoader detach operations, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code.

CVSS Score

8.8

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
GoogleChrome<= 51.0.2704.63
CanonicalUbuntu Linux14.04
DebianDebian Linux8.0
OpensuseLeap42.1
OpensuseOpensuse13.2
RedhatEnterprise Linux Desktop6.0
RedhatEnterprise Linux Server6.0
RedhatEnterprise Linux Workstation6.0
SuseLinux Enterprise12.0

Related Weaknesses (CWE)

CWE-284

References

FAQ

What is CVE-2016-1697?

CVE-2016-1697 is a vulnerability with a CVSS score of 8.8 (HIGH). The FrameLoader::startLoad function in WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 51.0.2704.79, does not prevent frame navigations during DocumentLoader detach...

How severe is CVE-2016-1697?

CVE-2016-1697 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-1697?

Check the references section above for vendor advisories and patch information. Affected products include: Google Chrome, Canonical Ubuntu Linux, Debian Debian Linux, Opensuse Leap, Opensuse Opensuse.