CVE-2010-0315

by Fred · 14/01/2010

WebKit before r53607, as used in Google Chrome before 4.0.249.89, allows remote attackers to discover a redirect’s target URL, for the session of a specific user of a web site, by placing the site’s URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets[0].href property value, related to an IFRAME element.

Date published : 2010-01-14

http://www.securityfocus.com/bid/38177

http://code.google.com/p/chromium/issues/detail?id=32309

CVE-2010-0315

Similar

Recent Posts

Categories

CVE-2010-0315

Share this:

Similar

Recent Posts

Categories

Tags