NVD

Id
13263  
Name
CVE-2010-1760  
Description
loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has unspecified impact and remote attack vectors, aka rdar problem 7905150.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-08-19  
Modified Date
2011-03-17  
Seq
2010-1760  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
73221 13263 CVE-2010-1760 SUSE-SR:2011:002  View
73222 13263 CVE-2010-1760 http://security-tracker.debian.org/tracker/CVE-2010-1760  View
73223 13263 CVE-2010-1760 http://trac.webkit.org/changeset/58409  View
73224 13263 CVE-2010-1760 MDVSA-2011:039  View
73225 13263 CVE-2010-1760 42494  View
73226 13263 CVE-2010-1760 USN-1006-1  View
73227 13263 CVE-2010-1760 ADV-2010-2722  View
73228 13263 CVE-2010-1760 ADV-2011-0212  View
73229 13263 CVE-2010-1760 ADV-2011-0552  View
73230 13263 CVE-2010-1760 https://bugs.webkit.org/show_bug.cgi?id=37781  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
38263 JVNDB-2010-004048 WebKit の loader/DocumentThreadableLoader.cpp における詳細不明な脆弱性 WebKit の WebCore の XMLHttpRequest 実装の loader/DocumentThreadableLoader.cpp は、cross-origin 同期リクエスト中に資格情報を適切に処理しないため、詳細不明な脆弱性が存在します。 CVE-2010-1760 44340 CVE-2010-1760 13263 10 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-004048.html 2010-08-19 2012-06-26 View