Omnibox Spoofing Vulnerability in Google Chrome
CVE-2016-5218 · MEDIUM Severity
AV:N/AC:M/AU:N/C:N/I:P/A:N
The extensions API in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly handled navigation within PDFs, which allowed a remote attacker to temporarily spoof the contents of the Omnibox (URL bar) via a crafted HTML page containing PDF data.
Learn more about our Cis Benchmark Audit For Distribution Independent Linux.