CVE-2010-0644

Опубликовано: 18 фев. 2010

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is configured, sends DNS queries directly, which allows remote DNS servers to obtain potentially sensitive information about the identity of a client user via request logging, as demonstrated by a proxy server that was configured for the purpose of anonymity.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Версия до 4.0.249.78 (включая)

cpe:2.3:a:google:chrome:0.2.149.27:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:0.2.149.29:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:0.2.149.30:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:0.2.152.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:0.2.153.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:0.3.154.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:0.3.154.3:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:0.4.154.18:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:0.4.154.22:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:0.4.154.31:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:0.4.154.33:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:1.0.154.36:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:1.0.154.39:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:1.0.154.42:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:1.0.154.43:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:1.0.154.46:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:1.0.154.48:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:1.0.154.52:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:1.0.154.53:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:1.0.154.59:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:1.0.154.65:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.156.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.157.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.157.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.158.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.159.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.169.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.169.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.170.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172.8:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172.27:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172.28:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172.30:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172.31:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172.33:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172.37:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172.38:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:3.0.182.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:3.0.190.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:3.0.193.2:beta:*:*:*:*:*:*

cpe:2.3:a:google:chrome:3.0.195.21:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:3.0.195.24:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:3.0.195.32:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:3.0.195.33:*:*:*:*:*:*:*

EPSS

Процентиль: 49%

0.00259

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2010-0644

ubuntu

почти 16 лет назад

CVE-2010-0644

debian

почти 16 лет назад

Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is config ...

GHSA-prjv-5g97-fjwx

github

больше 3 лет назад

EPSS

Процентиль: 49%

0.00259

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-200