Google Chrome for Android < 50.0.2661.75 Directory Traversal
Medium Nessus Network Monitor Plugin ID 9374
SynopsisThe remote mobile host is affected by a directory traversal vulnerability.
DescriptionThe version of Google Chrome for Android on the remote mobile host is prior to 50.0.2661.75 and thus is unpatched for a flaw that is triggered as the names of downloaded files from the content disposition are not properly sanitized. This may allow a context-dependent attacker to bypass file path restrictions.
SolutionUpdate Chrome for Android to version 50.0.2661.75 or later.