Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Google Chrome before 4.0.249.78 on Windows does not perform the expected encoding, escaping, and quoting for the URL in the --app argument in a desktop shortcut, which allows user-assisted remote attackers to execute arbitrary programs or obtain sensitive information by tricking a user into creating a crafted shortcut.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Chrome桌面快捷方式代码执行和敏感信息泄露漏洞
Vulnerability Description
Google Chrome是Google发布的一款浏览器。 在Windows平台上,Google Chrome桌面快捷方式存在代码执行和敏感信息泄露漏洞。由于没有对--app参数中的URL执行预期的编码遗弃和引用,远程攻击者可以通过欺骗用户创建伪造的快捷方式,执行任意代码或获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A