Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Google Chrome for Android < 50.0.2661.75 Directory Traversal

Medium

Synopsis

The remote mobile host is affected by a directory traversal vulnerability.

Description

The version of Google Chrome for Android on the remote mobile host is prior to 50.0.2661.75 and thus is unpatched for a flaw that is triggered as the names of downloaded files from the content disposition are not properly sanitized. This may allow a context-dependent attacker to bypass file path restrictions.

Solution

Update Chrome for Android to version 50.0.2661.75 or later.