Date published: 2014-11-19T06:59:00.090-05:00
Date last modified: 2017-09-07T21:29:17.777-04:00
CVSS Score: 5.0
Principal attack vector: NETWORK
Reference URL: http://googlechromereleases.blogspot.com/2014/11/stable-channel-update_18.html
Summary: Google Chrome before 38.0.2125.101 allows remote attackers to spoof the address bar by placing a blob: substring at the beginning of the URL, followed by the original URI scheme and a long username string.