Lucene search
HistoryApr 24, 2009 - 3:30 p.m.
CVE-2009-1414
google chrome
2.0.x
persistent modification
global object
universal xss attacks
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.2%
Google Chrome 2.0.x lets modifications to the global object persist across a page transition, which makes it easier for attackers to conduct Universal XSS attacks via unspecified vectors.
Affected configurations
Node
googlechromeMatch2.0.156.1
ORgooglechromeMatch2.0.157.0
ORgooglechromeMatch2.0.157.2
ORgooglechromeMatch2.0.158.0
ORgooglechromeMatch2.0.159.0
Related
debiancve
debiancve
CVE-2009-1414
2009-04-24 15:30:00
openvas
openvas
Google Chrome XSS Vulnerability
2009-05-07 00:00:00
Google Chrome XSS Vulnerability
2009-05-07 00:00:00
cvelist
cvelist
CVE-2009-1414
2009-04-24 15:00:00
prion
prion
Cross site scripting
2009-04-24 15:30:00
nvd
nvd
CVE-2009-1414
2009-04-24 15:30:00
seebug
seebug
Google Chrome chromehtml:协议处理器绕过同源策略限制漏洞
2009-04-28 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.2%
Related for CVE-2009-1414