Download protection bypass: MCL files
Reported by
ya...@nightwatchcybersecurity.com,
Dec 5 2016
|
|||||||||||
Issue descriptionVERSION Chrome Version: 55.0.2883.75m stable Operating System: Windows 7 Enterprise, Service Pack 1 REPRODUCTION CASE 1. Try the following file - download: https://theowl.xyz/cr/mcl/test1.mcl 2. Double click to start Windows Media Center. The counter will not increment - we are also attaching a test file WITHOUT a payload MCL files have an XXE vulnerability as discussed here: http://seclists.org/bugtraq/2016/Dec/1 We can provide a patch
,
Dec 6 2016
cc'ing nparker@ for more insights on the bug.
,
Dec 6 2016
Thanks for the report. See http://crbug.com/671382 for explanation of why this doesn't qualify for VRP.
,
Dec 7 2016
,
Dec 12 2016
Untriaged it so that it is available in the triage queue.
,
Dec 16 2016
,
Mar 10 2017
For all Download Protection VRP bugs: removing label Restrict-View-Google and adding Restrict-View-SecurityTeam instead.
,
Mar 25 2017
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||
►
Sign in to add a comment |
|||||||||||
Comment 1 by ajha@chromium.org
, Dec 6 2016