Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2010-0661

WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome before 4.0.249.78, allows remote attackers to bypass the Same Origin Policy via vectors involving the window.open method.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://code.google.com...
CONFIRM: http://googlechromerel...
CONFIRM: http://sites.google.co...
CONFIRM: http://trac.webkit.org...
CONFIRM: https://bugs.webkit.or...
SECTRACK: 1023506
CONFIRM: http://flock.com/secur...
SUSE: SUSE-SR:2011:002
SECUNIA: 43068
VUPEN: ADV-2011-0212
OVAL: oval:org.mitre.oval:de...

Launchpad.net

CVE 2010-0661

Related bugs

References