Google Chrome 17.0.963.66 and earlier allows remote attackers to bypass the sandbox protection mechanism by leveraging access to a sandboxed process, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2012. NOTE: the primary affected product may be clarified later; it was not identified by the researcher, who reportedly stated "it really doesn't matter if it's third-party code."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-03-22T16:00:00
Updated: 2024-08-06T19:08:38.516Z
Reserved: 2012-03-22T00:00:00
Link: CVE-2012-1846
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-03-22T16:55:02.113
Modified: 2024-11-21T01:37:54.050
Link: CVE-2012-1846
Redhat
No data.