CVE-2011-0778

Опубликовано: 03 фев. 2011

Источник: redhat

CVSS2: 3.7

Описание

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux Extended Update Support 6.0	webkitgtk	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=676209WebKit: restrict cross-origin drag+drop in WebKit

3.7 Low

CVSS2

Связанные уязвимости

CVE-2011-0778

ubuntu

почти 15 лет назад

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

CVE-2011-0778

nvd

почти 15 лет назад

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

CVE-2011-0778

debian

почти 15 лет назад

Google Chrome before 9.0.597.84 does not properly restrict drag and dr ...

GHSA-xr4m-cp8c-xgr2

github

больше 3 лет назад

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

3.7 Low

CVSS2