Google Chrome < 48.0.2564.116 Blink Same-Origin Policy Bypass (Mac OS X)
High Nessus Plugin ID 88957
SynopsisThe remote Mac OS X host contains a web browser that is affected by a security bypass vulnerability.
DescriptionThe version of Google Chrome installed on the remote Mac OS X host is prior to 48.0.2564.116. It is, therefore, affected by an unspecified flaw related to the Blink rendering engine. An attacker can exploit this to bypass same-origin policy restrictions and escape the sandbox, allowing the attacker to execute arbitrary code with elevated privileges.
SolutionUpgrade to Google Chrome version 48.0.2564.116 or later.