WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome prior to 4.0.249.78, allows remote malicious users to bypass the Same Origin Policy via vectors involving the window.open method.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple webkit 52400 |
||
google chrome |
||
google chrome 0.2.149.27 |
||
google chrome 0.2.149.29 |
||
google chrome 0.2.149.30 |
||
google chrome 0.2.152.1 |
||
google chrome 0.2.153.1 |
||
google chrome 0.3.154.0 |
||
google chrome 0.3.154.3 |
||
google chrome 0.4.154.18 |
||
google chrome 0.4.154.22 |
||
google chrome 0.4.154.31 |
||
google chrome 0.4.154.33 |
||
google chrome 1.0.154.36 |
||
google chrome 1.0.154.39 |
||
google chrome 1.0.154.42 |
||
google chrome 1.0.154.43 |
||
google chrome 1.0.154.46 |
||
google chrome 1.0.154.48 |
||
google chrome 1.0.154.52 |
||
google chrome 1.0.154.53 |
||
google chrome 1.0.154.59 |
||
google chrome 1.0.154.65 |
||
google chrome 2.0.156.1 |
||
google chrome 2.0.157.0 |
||
google chrome 2.0.157.2 |
||
google chrome 2.0.158.0 |
||
google chrome 2.0.159.0 |
||
google chrome 2.0.169.0 |
||
google chrome 2.0.169.1 |
||
google chrome 2.0.170.0 |
||
google chrome 2.0.172 |
||
google chrome 2.0.172.2 |
||
google chrome 2.0.172.8 |
||
google chrome 2.0.172.27 |
||
google chrome 2.0.172.28 |
||
google chrome 2.0.172.30 |
||
google chrome 2.0.172.31 |
||
google chrome 2.0.172.33 |
||
google chrome 2.0.172.37 |
||
google chrome 2.0.172.38 |
||
google chrome 3.0.182.2 |
||
google chrome 3.0.190.2 |
||
google chrome 3.0.193.2 |
||
google chrome 3.0.195.21 |
||
google chrome 3.0.195.24 |
||
google chrome 3.0.195.32 |
||
google chrome 3.0.195.33 |
||
google chrome 4.0.244.0 |