VU#305096: Comodo Chromodo browser with Ad Sanitizer does not enforce same origin policy and is based on an outdated version of Chromium
Vulnerability Note VU#305096
Comodo Chromodo browser with Ad Sanitizer does not enforce same origin policy and is based on an outdated version of Chromium
Original Release date: 04 Feb 2016 | Last revised: 05 Feb 2016
Comodo Chromodo browser, version 220.127.116.111, and possibly earlier, bundles the Ad Sanitizer extension, version 18.104.22.168, which disables same origin policy, allowing for the possibility of cross-domain attacks by malicious or compromised web hosts. Chromodo is based on an outdated release of Chromium with known vulnerabilities.
Comodo Chromodo is a web browser that comes packaged with Comodo Internet Security. It is based on Chromium 45.0.2454.93, which was released in September 2015. By default, the browser uses the Ad Sanitizer extension by AdtrustMedia, which disables same origin protections and allows for an attacker to access a victim user’s web content from other domains via a specially crafted web page.
According to the original disclosure by the Project Zero team at Google, version 22.214.171.1242 was released to address attacks based on the use of execCode. Version 126.96.36.1992 appears to remove Ad Sanitizer.
By convincing a user to visit a specially crafted web page, an attacker can obtain access to web content from another domain.
The CERT/CC is currently unaware of a practical solution to this problem and recommends the following workarounds.
Disable or remove Ad Sanitizer
Disabling or removing the Ad Sanitizer extension mitigates cross-domain attacks. This can be accomplished by updating to version 188.8.131.522 or through the extensions management interface. For instructions, refer to the Chromodo help page.
Note that disabling Ad Sanitizer does not address known vulnerabilities in the version of Chromium on which Chromodo is based. For this reason, users should prioritize implementing the following workaround.
Until these issues are addressed, consider discontinuing use of Chromodo.
Vendor Information (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|AdTrustMedia||Affected||–||05 Feb 2016|
|COMODO Security Solutions, Inc.||Affected||04 Feb 2016||04 Feb 2016|
If you are a vendor and your product is affected, let
CVSS Metrics (Learn More)
The CERT/CC acknowledges Tavis Ormandy of the Project Zero team at Google for disclosing this issue.
This document was written by Joel Land.
04 Feb 2016
Date First Published:
04 Feb 2016
Date Last Updated:
05 Feb 2016
If you have feedback, comments, or additional information about this vulnerability, please send us email.
The original article/video can be found at VU#305096: Comodo Chromodo browser with Ad Sanitizer does not enforce same origin policy and is based on an outdated version of Chromium