CVE-2015-1241

Google Chrome before 42.0.2311.90 does not properly consider the interaction of page navigation with the handling of touch events and gesture events, which allows remote attackers to trigger unintended UI actions via a crafted web site that conducts a "tapjacking" attack.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://googlechromereleases.blogspot.com/2015/04/stable-channel-update_14.html	Release Notes
http://lists.opensuse.org/opensuse-updates/2015-04/msg00040.html	Mitigation Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2015-11/msg00024.html	Mitigation Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-0816.html	Third Party Advisory
http://ubuntu.com/usn/usn-2570-1	Third Party Advisory
http://www.debian.org/security/2015/dsa-3238	Third Party Advisory
http://www.securitytracker.com/id/1032209	Broken Link Third Party Advisory VDB Entry
https://code.google.com/p/chromium/issues/detail?id=418402	Exploit Issue Tracking Vendor Advisory
https://codereview.chromium.org/628763003	Issue Tracking Vendor Advisory
https://codereview.chromium.org/660663002	Issue Tracking Vendor Advisory
https://codereview.chromium.org/717573004	Issue Tracking Vendor Advisory
https://codereview.chromium.org/868123002	Issue Tracking Vendor Advisory
https://security.gentoo.org/glsa/201506-04	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration 3 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
	cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*

Configuration 4 (hide)

OR	cpe:2.3:o:opensuse:opensuse:13.1:::::::*
	cpe:2.3:o:opensuse:opensuse:13.2:::::::*

Configuration 5 (hide)

cpe:2.3:o:suse:linux_enterprise:12.0:*:*:*:*:*:*:*

Configuration 6 (hide)

OR	cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:6.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_eus:6.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*

History

No history.

Information

Published : 2015-04-19 10:59

Updated : 2024-01-26 18:56

NVD link : CVE-2015-1241

Mitre link : CVE-2015-1241

CVE.ORG link : CVE-2015-1241

JSON object : View

Products Affected

redhat

enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_desktop
enterprise_linux_server_eus
enterprise_linux_eus
enterprise_linux_workstation

suse

linux_enterprise

canonical

ubuntu_linux

google

chrome

opensuse

opensuse

debian

debian_linux

CWE

CWE-1021

Improper Restriction of Rendered UI Layers or Frames

{"id": "CVE-2015-1241", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2015-04-19T10:59:05.773", "references": [{"url": "http://googlechromereleases.blogspot.com/2015/04/stable-channel-update_14.html", "tags": ["Release Notes"], "source": "chrome-cve-admin@google.com"}, {"url": "http://lists.opensuse.org/opensuse-updates/2015-04/msg00040.html", "tags": ["Mitigation", "Third Party Advisory"], "source": "chrome-cve-admin@google.com"}, {"url": "http://lists.opensuse.org/opensuse-updates/2015-11/msg00024.html", "tags": ["Mitigation", "Third Party Advisory"], "source": "chrome-cve-admin@google.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0816.html", "tags": ["Third Party Advisory"], "source": "chrome-cve-admin@google.com"}, {"url": "http://ubuntu.com/usn/usn-2570-1", "tags": ["Third Party Advisory"], "source": "chrome-cve-admin@google.com"}, {"url": "http://www.debian.org/security/2015/dsa-3238", "tags": ["Third Party Advisory"], "source": "chrome-cve-admin@google.com"}, {"url": "http://www.securitytracker.com/id/1032209", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "source": "chrome-cve-admin@google.com"}, {"url": "https://code.google.com/p/chromium/issues/detail?id=418402", "tags": ["Exploit", "Issue Tracking", "Vendor Advisory"], "source": "chrome-cve-admin@google.com"}, {"url": "https://codereview.chromium.org/628763003", "tags": ["Issue Tracking", "Vendor Advisory"], "source": "chrome-cve-admin@google.com"}, {"url": "https://codereview.chromium.org/660663002", "tags": ["Issue Tracking", "Vendor Advisory"], "source": "chrome-cve-admin@google.com"}, {"url": "https://codereview.chromium.org/717573004", "tags": ["Issue Tracking", "Vendor Advisory"], "source": "chrome-cve-admin@google.com"}, {"url": "https://codereview.chromium.org/868123002", "tags": ["Issue Tracking", "Vendor Advisory"], "source": "chrome-cve-admin@google.com"}, {"url": "https://security.gentoo.org/glsa/201506-04", "tags": ["Third Party Advisory"], "source": "chrome-cve-admin@google.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-1021"}]}], "descriptions": [{"lang": "en", "value": "Google Chrome before 42.0.2311.90 does not properly consider the interaction of page navigation with the handling of touch events and gesture events, which allows remote attackers to trigger unintended UI actions via a crafted web site that conducts a \"tapjacking\" attack."}, {"lang": "es", "value": "Google Chrome anterior a 42.0.2311.90 no considera correctamente la interacci\u00f3n de la navegaci\u00f3n de p\u00e1ginas con el manejo de los eventos 't\u00e1ctiles' (touch) y los eventos de 'gestos' (gesture), lo que permite a atacantes remotos provocar acciones no intencionadas de la interfaz del usuario a trav\u00e9s de un sitio web manipulado que realiza un ataque de 'tapjacking'."}], "lastModified": "2024-01-26T18:56:55.317", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01CA075E-E411-4A68-8D3B-C1F629360D83", "versionEndExcluding": "42.0.2311.90"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "vulnerable": true, "matchCriteriaId": "815D70A8-47D3-459C-A32C-9FEACA0659D1"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49A63F39-30BE-443F-AF10-6245587D3359"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F38D3B7E-8429-473F-BB31-FC3583EE5A5B"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A10BC294-9196-425F-9FB0-B1625465B47F"}, {"criteria": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03117DF1-3BEC-4B8D-AD63-DBBDB2126081"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:suse:linux_enterprise:12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBC8B78D-1131-4F21-919D-8AC79A410FB9"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:6.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "319EC0C6-94C5-494A-9C5D-DC5124DFC8E1"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16E6D998-B41D-4B49-9E00-8336D2E40A4A"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:6.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C18E3368-8980-45D2-AD3F-5BF385ABA693"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A"}], "operator": "OR"}]}], "sourceIdentifier": "chrome-cve-admin@google.com"}

4.3 /10