CVE-2009-1412

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 1.0.154.59

Description The issue allows remote attackers to determine the existence of files and open tabs for URLs that do not satisfy the IsWebSafeScheme restriction. This can be achieved via a web page that sets document.location to a chromehtml: value, such as using a javascript: or data: URL. It is also noted that this issue can be leveraged for Universal XSS by exploiting certain behavior involving persistence across page transitions.

Recommendations For versions prior to 1.0.154.59, update to version 1.0.154.59 or later to resolve the issue. As a temporary workaround, consider restricting the use of the chromehtml: protocol handler to minimize the risk of exploitation. Avoid using the document.location property to set chromehtml: values in web pages until the issue is resolved.