CVE Vulnerabilities

CVE-2010-0315

Published: Jan 14, 2010 | Modified: Sep 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

WebKit before r53607, as used in Google Chrome before 4.0.249.89, allows remote attackers to discover a redirects target URL, for the session of a specific user of a web site, by placing the sites URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets[0].href property value, related to an IFRAME element.

Affected Software

Name Vendor Start Version End Version
Chrome Google * 4.0.249.78 (including)
Chrome Google 0.2.149.27 (including) 0.2.149.27 (including)
Chrome Google 0.2.149.29 (including) 0.2.149.29 (including)
Chrome Google 0.2.149.30 (including) 0.2.149.30 (including)
Chrome Google 0.2.152.1 (including) 0.2.152.1 (including)
Chrome Google 0.2.153.1 (including) 0.2.153.1 (including)
Chrome Google 0.3.154.0 (including) 0.3.154.0 (including)
Chrome Google 0.3.154.3 (including) 0.3.154.3 (including)
Chrome Google 0.4.154.18 (including) 0.4.154.18 (including)
Chrome Google 0.4.154.22 (including) 0.4.154.22 (including)
Chrome Google 0.4.154.31 (including) 0.4.154.31 (including)
Chrome Google 0.4.154.33 (including) 0.4.154.33 (including)
Chrome Google 1.0.154.36 (including) 1.0.154.36 (including)
Chrome Google 1.0.154.39 (including) 1.0.154.39 (including)
Chrome Google 1.0.154.42 (including) 1.0.154.42 (including)
Chrome Google 1.0.154.43 (including) 1.0.154.43 (including)
Chrome Google 1.0.154.46 (including) 1.0.154.46 (including)
Chrome Google 1.0.154.48 (including) 1.0.154.48 (including)
Chrome Google 1.0.154.52 (including) 1.0.154.52 (including)
Chrome Google 1.0.154.53 (including) 1.0.154.53 (including)
Chrome Google 1.0.154.59 (including) 1.0.154.59 (including)
Chrome Google 1.0.154.65 (including) 1.0.154.65 (including)
Chrome Google 2.0.156.1 (including) 2.0.156.1 (including)
Chrome Google 2.0.157.0 (including) 2.0.157.0 (including)
Chrome Google 2.0.157.2 (including) 2.0.157.2 (including)
Chrome Google 2.0.158.0 (including) 2.0.158.0 (including)
Chrome Google 2.0.159.0 (including) 2.0.159.0 (including)
Chrome Google 2.0.169.0 (including) 2.0.169.0 (including)
Chrome Google 2.0.169.1 (including) 2.0.169.1 (including)
Chrome Google 2.0.170.0 (including) 2.0.170.0 (including)
Chrome Google 2.0.172 (including) 2.0.172 (including)
Chrome Google 2.0.172.2 (including) 2.0.172.2 (including)
Chrome Google 2.0.172.8 (including) 2.0.172.8 (including)
Chrome Google 2.0.172.27 (including) 2.0.172.27 (including)
Chrome Google 2.0.172.28 (including) 2.0.172.28 (including)
Chrome Google 2.0.172.30 (including) 2.0.172.30 (including)
Chrome Google 2.0.172.31 (including) 2.0.172.31 (including)
Chrome Google 2.0.172.33 (including) 2.0.172.33 (including)
Chrome Google 2.0.172.37 (including) 2.0.172.37 (including)
Chrome Google 2.0.172.38 (including) 2.0.172.38 (including)
Chrome Google 3.0.182.2 (including) 3.0.182.2 (including)
Chrome Google 3.0.190.2 (including) 3.0.190.2 (including)
Chrome Google 3.0.193.2-beta (including) 3.0.193.2-beta (including)
Chrome Google 3.0.195.21 (including) 3.0.195.21 (including)
Chrome Google 3.0.195.24 (including) 3.0.195.24 (including)
Chrome Google 3.0.195.32 (including) 3.0.195.32 (including)
Chrome Google 3.0.195.33 (including) 3.0.195.33 (including)

References