CVE-2011-0778

Опубликовано: 04 фев. 2011

Источник: debian

EPSS Низкий

Описание

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium-browser	fixed	9.0.597.84~r72991-1		package
chromium-browser	fixed	6.0.472.63~r59945-5+squeeze4	wheezy	package
webkit	fixed	1.2.7-1		package

Примечания

http://trac.webkit.org/changeset/71925

EPSS

Процентиль: 67%

0.00542

Низкий

Связанные уязвимости

CVE-2011-0778

ubuntu

почти 15 лет назад

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

CVE-2011-0778

redhat

почти 15 лет назад

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

CVE-2011-0778

nvd

почти 15 лет назад

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

GHSA-xr4m-cp8c-xgr2

github

больше 3 лет назад

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

EPSS

Процентиль: 67%

0.00542

Низкий