Lucene search

MitreCVE-2009-1412

HistoryApr 24, 2009 - 3:30 p.m.

CVE-2009-1412

2009-04-2415:30:00

CWE-200

mitre

web.nvd.nist.gov

cve-2009-1412

argument injection vulnerability

chromehtml protocol handler

google chrome

remote attackers

universal xss

internet explorer

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

AI Score

5.9

Confidence

High

EPSS

0.002

Percentile

59.8%

JSON

Argument injection vulnerability in the chromehtml: protocol handler in Google Chrome before 1.0.154.59, when invoked by Internet Explorer, allows remote attackers to determine the existence of files, and open tabs for URLs that do not satisfy the IsWebSafeScheme restriction, via a web page that sets document.location to a chromehtml: value, as demonstrated by use of a (1) javascript: or (2) data: URL. NOTE: this can be leveraged for Universal XSS by exploiting certain behavior involving persistence across page transitions.

Affected configurations

Nvd

Node

googlechromeRange≤1.0.154.53

googlechromeMatch0.2.149.29

googlechromeMatch0.2.149.30

googlechromeMatch0.2.152.1

googlechromeMatch0.2.153.1

googlechromeMatch0.3.154.0

googlechromeMatch0.3.154.3

googlechromeMatch0.4.154.18

googlechromeMatch0.4.154.22

googlechromeMatch0.4.154.31

googlechromeMatch0.4.154.33

googlechromeMatch1.0.154.36

googlechromeMatch1.0.154.39

googlechromeMatch1.0.154.42

googlechromeMatch1.0.154.43

googlechromeMatch1.0.154.46

AND

microsoftinternet_explorerMatch7

VendorProductVersionCPE
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
googlechrome0.2.149.29cpe:2.3:a:google:chrome:0.2.149.29:*:*:*:*:*:*:*
googlechrome0.2.149.30cpe:2.3:a:google:chrome:0.2.149.30:*:*:*:*:*:*:*
googlechrome0.2.152.1cpe:2.3:a:google:chrome:0.2.152.1:*:*:*:*:*:*:*
googlechrome0.2.153.1cpe:2.3:a:google:chrome:0.2.153.1:*:*:*:*:*:*:*
googlechrome0.3.154.0cpe:2.3:a:google:chrome:0.3.154.0:*:*:*:*:*:*:*
googlechrome0.3.154.3cpe:2.3:a:google:chrome:0.3.154.3:*:*:*:*:*:*:*
googlechrome0.4.154.18cpe:2.3:a:google:chrome:0.4.154.18:*:*:*:*:*:*:*
googlechrome0.4.154.22cpe:2.3:a:google:chrome:0.4.154.22:*:*:*:*:*:*:*
googlechrome0.4.154.31cpe:2.3:a:google:chrome:0.4.154.31:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
google	chrome	*	cpe:2.3:a:google:chrome::::::::
google	chrome	0.2.149.29	cpe:2.3:a:google:chrome:0.2.149.29:::::::*
google	chrome	0.2.149.30	cpe:2.3:a:google:chrome:0.2.149.30:::::::*
google	chrome	0.2.152.1	cpe:2.3:a:google:chrome:0.2.152.1:::::::*
google	chrome	0.2.153.1	cpe:2.3:a:google:chrome:0.2.153.1:::::::*
google	chrome	0.3.154.0	cpe:2.3:a:google:chrome:0.3.154.0:::::::*
google	chrome	0.3.154.3	cpe:2.3:a:google:chrome:0.3.154.3:::::::*
google	chrome	0.4.154.18	cpe:2.3:a:google:chrome:0.4.154.18:::::::*
google	chrome	0.4.154.22	cpe:2.3:a:google:chrome:0.4.154.22:::::::*
google	chrome	0.4.154.31	cpe:2.3:a:google:chrome:0.4.154.31:::::::*