PT-2010-2413 · Google+1 · Google Chrome+1
Tokuji Akamine
·
Publicado
2010-02-18
·
Atualizado
2017-09-19
·
CVE-2010-0661
CVSS v2.0
6.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
WebKit versions before r52401
Google Chrome versions before 4.0.249.78
Description
The issue allows remote attackers to bypass the Same Origin Policy. This is achieved via vectors involving the
window.open method.Recommendations
For WebKit versions before r52401, update to version r52401 or later.
For Google Chrome versions before 4.0.249.78, update to version 4.0.249.78 or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Google Chrome
Webkit