CVE-2016-1656

HIGH

Google Chrome <50.0.2661.75 - Open Redirect

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-1656. PoCs published by OpenSISE.

AI-analyzed exploit summary This PoC demonstrates a directory traversal vulnerability in Chrome's download handling (CVE-2016-1656). The script allows arbitrary file writes via the 'name' parameter, exploiting improper sanitization of filenames in the Content-Disposition header.

Description

The download implementation in Google Chrome before 50.0.2661.75 on Android allows remote attackers to bypass intended pathname restrictions via unspecified vectors.

Exploits (1)

github WORKING POC 31 stars
by OpenSISE · cpoc
https://github.com/OpenSISE/CVE_PoC_Collect/tree/master/Browser/CVE-2016-1656

This PoC demonstrates a directory traversal vulnerability in Chrome's download handling (CVE-2016-1656). The script allows arbitrary file writes via the 'name' parameter, exploiting improper sanitization of filenames in the Content-Disposition header.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Google Chrome (versions prior to fix)
No auth needed
Prerequisites: User interaction to trigger download
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (8)

Core 8
Core References
Issue Tracking x_refsource_confirm
https://crbug.com/570750
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0638.html
Release Notes, Vendor Advisory x_refsource_confirm
http://googlechromereleases.blogspot.com/2016/04/stable-channel-update_13.html
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201605-02

Scores

CVSS v3 7.5
EPSS 0.0146
EPSS Percentile 70.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-284
Status published
Products (3)
google/chrome < 49.0.2623.112
opensuse/leap 42.1
suse/linux_enterprise 12.0
Published Apr 18, 2016
Tracked Since Feb 18, 2026