CVE-2018-6127 had been assigned these issues in Chromium. These issues were fixed in V8 version 5.6.8p131.
This issue was discovered by Dawid Golunski of Google.
On Windows, if the "Enable digital signing" option is not enabled in the browser's settings, then Google Chrome will not be able to verify the signature of the application being loaded via the "Load unpacked extension" feature of the browser. If the application is signed with an invalid signature, then the application will be loaded instead of Chrome.
In addition, a specially crafted signed application can also load arbitrary extensions.
On Windows and Mac, Chrome will display an error message when running a signed application with an invalid signature.
This issue does not affect the operating system itself, but it can be exploited to load arbitrary extensions.
Google Chrome prior to version 68.0.3440.75 allowed a remote attacker to bypass the prompt to enable two-factor authentication via a crafted web site.
This vulnerability was fixed in version 68.0.3440.75.
On Windows, if the "Enable digital signing" option is not enabled in the browser's settings, then Google Chrome will not be able to verify the signature of the application being loaded via the "Load unpacked extension" feature of the browser. If the application is signed with an invalid signature, then the application will be loaded instead of Chrome.
In
BREADTH OF THE ISSUE
The vulnerability is in the browser. If you are running a vulnerable version of the browser, this vulnerability may allow an attacker to bypass two-factor authentication. This vulnerability does not affect the operating system itself.
Google Chrome prior to version 68.0.3440.63 allowed a remote attacker to bypass the prompt to enable two-factor authentication via a crafted web site.
This vulnerability was fixed in version 68.0.3440.63.
How to fix code
On Windows, if the "Enable digital signing" option is not enabled in the browser's settings, then Google Chrome will not be able to verify the signature of the application being loaded via the "Load unpacked extension" feature of the browser. If the application is signed with an invalid signature, then the application will be loaded instead of Chrome.
In addition, a specially crafted signed application can also load arbitrary extensions.
On Windows and Mac, Chrome will display an error message when running a signed application with an invalid signature.
This issue does not affect the operating system itself, but it can be exploited to load arbitrary extensions.
Google Chrome prior to version 68.0.3440.75 allowed a remote attacker to bypass the prompt to enable two-factor authentication via a crafted web site.
This vulnerability was fixed in version 68.0.3440.75
Timeline
Published on: 04/05/2022 01:15:00 UTC
Last modified on: 04/11/2022 09:37:00 UTC