Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-2071HistoryJun 15, 2009 - 7:30 p.m.
CVE-2009-2071
2009-06-1519:30:00
Debian Security Bug Tracker
security-tracker.debian.org
8
0.004 Low
EPSS
Percentile
72.4%
Google Chrome before 1.0.154.53 displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a crafted 502 response page upon a subsequent request.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | chromium-browser | < 70.0.3538.110-1~deb9u1 | chromium-browser_70.0.3538.110-1~deb9u1_all.deb |
Related
nvd
nvd
CVE-2009-2071
2009-06-15 19:30:05
prion
prion
Cross site request forgery (csrf)
2009-06-15 19:30:00
cvelist
cvelist
CVE-2009-2071
2009-06-15 19:00:00
cve
cve
CVE-2009-2071
2009-06-15 19:30:05
nessus
nessus
Google Chrome < 1.0.154.53 Multiple Vulnerabilities
2009-06-19 00:00:00
openvas
openvas
Google Chrome Web Script Execution Vulnerabilities (Jun 2009)
2009-06-17 00:00:00
Google Chrome Web Script Execution Vulnerabilities - June09
2009-06-17 00:00:00