This is a short writeup about my SOP (Same-Origin Policy) bypass with SVG images I've found in Chrome, so that other security researchers can benefit from it. I reported the Chrome vulnerability to Google's security team in 2014 and they did a very good job at fixing it in Chrome's M36 release. At around Q4 2014 the bug ticket (#380885) was opened to public, so that I'm allowed to publish this writeup (as soon as I find time to write)...
more here...........http://www.christian-schneider.net/ChromeSopBypassWithSvg.html
more here...........http://www.christian-schneider.net/ChromeSopBypassWithSvg.html