CVE-2009-0411
CVE-2009-0411 affects Google Chrome prior to 1.0.154.46, where web pages could access the (1) Set-Cookie and (2) Set-Cookie2 HTTP response headers via XMLHttpRequest and other web scripts, leading to potential disclosure of cookie data. Root cause: insufficient restriction of cross-origin access ...