National Cyber Awareness System

Vulnerability Summary for CVE-2010-0315

Overview

WebKit before r53607, as used in Google Chrome before 4.0.249.89, allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets[0].href property value, related to an IFRAME element.

Impact

CVSS Severity (version 2.0):

CVSS Version 2 Metrics:

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: CONFIRM

Name: https://bugs.webkit.org/show_bug.cgi?id=33683

Hyperlink:https://bugs.webkit.org/show_bug.cgi?id=33683

External Source: XF

Name: googlechrome-iframe-info-disc(56215)

Hyperlink:http://xforce.iss.net/xforce/xfdb/56215

External Source: XF

Name: google-chrome-href-info-disclosure(55683)

Hyperlink:http://xforce.iss.net/xforce/xfdb/55683

External Source: VUPEN

Name: ADV-2011-0212

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2011/0212

External Source: VUPEN

Name: ADV-2010-0361

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2010/0361

External Source: BID

Name: 38177

Hyperlink:http://www.securityfocus.com/bid/38177

External Source: CONFIRM

Name: http://trac.webkit.org/changeset/53607

Hyperlink:http://trac.webkit.org/changeset/53607

External Source: CONFIRM

Name: http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugs

Hyperlink:http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugs

External Source: SECTRACK

Name: 1023583

Hyperlink:http://securitytracker.com/id?1023583

External Source: SECUNIA

Name: 43068

Type: Advisory

Hyperlink:http://secunia.com/advisories/43068

External Source: SECUNIA

Name: 38545

Type: Advisory

Hyperlink:http://secunia.com/advisories/38545

External Source: OVAL

Name: oval:org.mitre.oval:def:14452

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14452

External Source: MISC

Name: http://nomoreroot.blogspot.com/2010/01/little-bug-in-safari-and-google-chrome.html

Hyperlink:http://nomoreroot.blogspot.com/2010/01/little-bug-in-safari-and-google-chrome.html

External Source: SUSE

Name: SUSE-SR:2011:002

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

External Source: CONFIRM

Name: http://googlechromereleases.blogspot.com/2010/02/stable-channel-update.html

Hyperlink:http://googlechromereleases.blogspot.com/2010/02/stable-channel-update.html

External Source: CONFIRM

Name: http://code.google.com/p/chromium/issues/detail?id=32309

Hyperlink:http://code.google.com/p/chromium/issues/detail?id=32309

References to Check Content

Identifier:oval:org.mitre.oval:def:14452

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:14452