CVE

Id
43245  
CVE No.
CVE-2010-0661  
Status
Candidate  
Description
WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome before 4.0.249.78, allows remote attackers to bypass the Same Origin Policy via vectors involving the window.open method.  
Phase
Assigned (20100218)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
471220 43245 CVE-2010-0661 CONFIRM:http://code.google.com/p/chromium/issues/detail?id=30660  View
471221 43245 CVE-2010-0661 CONFIRM:http://googlechromereleases.blogspot.com/2010/01/stable-channel-update_25.html  View
471222 43245 CVE-2010-0661 CONFIRM:http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugs  View
471223 43245 CVE-2010-0661 CONFIRM:http://trac.webkit.org/changeset/52401  View
471224 43245 CVE-2010-0661 CONFIRM:https://bugs.webkit.org/show_bug.cgi?id=32647  View
471225 43245 CVE-2010-0661 CONFIRM:http://flock.com/security/  View
471226 43245 CVE-2010-0661 SUSE:SUSE-SR:2011:002  View
471227 43245 CVE-2010-0661 URL:http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html  View
471228 43245 CVE-2010-0661 OVAL:oval:org.mitre.oval:def:14482  View
471229 43245 CVE-2010-0661 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14482  View
471230 43245 CVE-2010-0661 SECTRACK:1023506  View
471231 43245 CVE-2010-0661 URL:http://securitytracker.com/id?1023506  View
471232 43245 CVE-2010-0661 SECUNIA:43068  View
471233 43245 CVE-2010-0661 URL:http://secunia.com/advisories/43068  View
471234 43245 CVE-2010-0661 VUPEN:ADV-2011-0212  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
39485 JVNDB-2010-005270 JAG における重要な情報を取得される脆弱性 JAG (Just Another Guestbook) は、不十分なアクセスコントロールを伴う Web ルート配下に重要な情報を格納するため、重要な情報を取得される脆弱性が存在します。 CVE-2010-0665 43245 5 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-005270.html  View