Endpoint Vulnerability

Security Vulnerability CVE-2014-7929 for Google Chrome

Description

Use-after-free vulnerability in the HTMLScriptElement::didMoveToNewDocument function in core/html/HTMLScriptElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving movement of a SCRIPT element across documents.

Affected Products

Google Chrome

References

CVE-2014-7929,