NVD

Id
15737  
Name
CVE-2010-4483  
Description
Google Chrome before 8.0.552.215 does not properly restrict read access to videos derived from CANVAS elements, which allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive video data via a crafted web site.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-18  
Published
2010-12-07  
Modified Date
2015-11-13  
Seq
2010-4483  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
89217 15737 CVE-2010-4483 http://code.google.com/p/chromium/issues/detail?id=55745  View
89218 15737 CVE-2010-4483 http://googlechromereleases.blogspot.com/2010/12/stable-beta-channel-updates.html  View
89219 15737 CVE-2010-4483 oval:org.mitre.oval:def:11610  View
89220 15737 CVE-2010-4483 https://technet.microsoft.com/library/security/msvr11-002  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
37686 JVNDB-2010-003471 Google Chrome における同一生成元ポリシーを回避される脆弱性 Google Chrome は、CANVAS 要素を持つ動画の読み込みを適切に制限しないため、同一生成元ポリシーを回避される、または重要な動画データを取得される脆弱性が存在します。 CVE-2010-4483 47063 CVE-2010-4483 15737 4.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-003471.html 2010-12-07 2012-03-27 View