HTTP: Google Chrome GURL Cross Origin Bypass1
This signature detects attemps to exploit a known Cross Origin Bypass vulnerability in Google Chrome Web browser. The vulnerability is due to insufficient validation of URLs in the Google URL (GURL) component, which can lead to violation of the same origin policy. Remote attackers can exploit this by enticing target users to visit a malicious Web site. A successful exploitation can result in information disclosure and execution of active content outside the prescribed context.
Short Name
HTTP:STC:CHROME:GURL-XO-BYPASS1
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Bypass1 Chrome Cross GURL Google Origin
Release Date
09/30/2015
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3510
False Positive
Rarely