1. CVE-Search
  2. CVE-2016-8508
ID CVE-2016-8508
Summary Yandex Browser for desktop before 17.1.1.227 does not show Protect (similar to Safebrowsing in Chromium) warnings in web-sites with special content-type, which could be used by remote attacker for prevention Protect warning on own malicious web-site.
References
Vulnerable Configurations
  • cpe:2.3:a:yandex:yandex_browser:-:*:*:*:*:iphone_os:*:*
    cpe:2.3:a:yandex:yandex_browser:-:*:*:*:*:iphone_os:*:*
  • cpe:2.3:a:yandex:yandex_browser:15.2.2214.3645:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:15.2.2214.3645:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:15.4.2272.3429:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:15.4.2272.3429:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:15.6.2311.5029:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:15.6.2311.5029:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:15.10:*:*:*:*:android:*:*
    cpe:2.3:a:yandex:yandex_browser:15.10:*:*:*:*:android:*:*
  • cpe:2.3:a:yandex:yandex_browser:15.10.2454.3845:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:15.10.2454.3845:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:15.12:*:*:*:*:-:*:*
    cpe:2.3:a:yandex:yandex_browser:15.12:*:*:*:*:-:*:*
  • cpe:2.3:a:yandex:yandex_browser:15.12:*:*:*:*:android:*:*
    cpe:2.3:a:yandex:yandex_browser:15.12:*:*:*:*:android:*:*
  • cpe:2.3:a:yandex:yandex_browser:15.12.0:*:*:*:*:android:*:*
    cpe:2.3:a:yandex:yandex_browser:15.12.0:*:*:*:*:android:*:*
  • cpe:2.3:a:yandex:yandex_browser:15.12.0.6151:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:15.12.0.6151:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:15.12.1.6475:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:15.12.1.6475:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.2:*:*:*:*:-:*:*
    cpe:2.3:a:yandex:yandex_browser:16.2:*:*:*:*:-:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.2:*:*:*:*:android:*:*
    cpe:2.3:a:yandex:yandex_browser:16.2:*:*:*:*:android:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.2.0.3539:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.2.0.3539:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.4.0.9335:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.4.0.9335:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.4.0.9404:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.4.0.9404:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.6:*:*:*:*:-:*:*
    cpe:2.3:a:yandex:yandex_browser:16.6:*:*:*:*:-:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.6:*:*:*:*:android:*:*
    cpe:2.3:a:yandex:yandex_browser:16.6:*:*:*:*:android:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.6.0.8810:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.6.0.8810:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.6.1.9652:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.6.1.9652:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.6.1.30165:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.6.1.30165:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.7.0:*:*:*:*:android:*:*
    cpe:2.3:a:yandex:yandex_browser:16.7.0:*:*:*:*:android:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.7.0.2777:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.7.0.2777:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.7.0.3342:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.7.0.3342:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.7.1.2912:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.7.1.2912:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.7.1.20808:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.7.1.20808:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.9:*:*:*:*:-:*:*
    cpe:2.3:a:yandex:yandex_browser:16.9:*:*:*:*:-:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.9:*:*:*:*:android:*:*
    cpe:2.3:a:yandex:yandex_browser:16.9:*:*:*:*:android:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.9.0.1424:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.9.0.1424:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.9.1.1131:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.9.1.1131:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.9.1.1616:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.9.1.1616:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.10:*:*:*:*:-:*:*
    cpe:2.3:a:yandex:yandex_browser:16.10:*:*:*:*:-:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.10:*:*:*:*:android:*:*
    cpe:2.3:a:yandex:yandex_browser:16.10:*:*:*:*:android:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.10.0.1326:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.10.0.1326:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.10.0.2357:*:*:*:*:iphone_os:*:*
    cpe:2.3:a:yandex:yandex_browser:16.10.0.2357:*:*:*:*:iphone_os:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.10.1.1443:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.10.1.1443:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.10.2.1487:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.10.2.1487:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:16.11.0.649:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:16.11.0.649:*:*:*:*:*:*:*
  • cpe:2.3:a:yandex:yandex_browser:17.1:*:*:*:*:-:*:*
    cpe:2.3:a:yandex:yandex_browser:17.1:*:*:*:*:-:*:*
  • cpe:2.3:a:yandex:yandex_browser:17.1:*:*:*:*:android:*:*
    cpe:2.3:a:yandex:yandex_browser:17.1:*:*:*:*:android:*:*
  • cpe:2.3:a:yandex:yandex_browser:17.1.0.412:*:*:*:*:*:*:*
    cpe:2.3:a:yandex:yandex_browser:17.1.0.412:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 10-07-2020 - 13:42)
Impact:
Exploitability:
CWE CWE-254
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:P/A:N
refmap via4
bid 96514
confirm https://yandex.com/blog/security-changelogs/fixed-in-version-17-1
Last major update 10-07-2020 - 13:42
Published 01-03-2017 - 15:59
Last modified 10-07-2020 - 13:42
Back to Top