Vulnerabilities

CVE-2010-0656

by Fred · 18/02/2010

WebKit before r51295, as used in Google Chrome before 4.0.249.78, presents a directory-listing page in response to an XMLHttpRequest for a file:/// URL that corresponds to a directory, which allows attackers to obtain sensitive information or possibly have unspecified other impact via a crafted local HTML document.

Date published : 2010-02-18

http://www.securityfocus.com/bid/38372

http://code.google.com/p/chromium/issues/detail?id=20450

Similar

Tags: Cybersecurity Alert