CVE-2009-2060

src/net/http/http_transaction_winhttp.cc in Google Chrome before 1.0.154.53 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.2.149.29:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.2.149.30:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.2.152.1:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.2.153.1:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.3.154.0:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.3.154.3:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.4.154.18:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.4.154.22:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.4.154.31:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.4.154.33:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.36:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.39:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.42:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.43:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.46:*:*:*:*:*:*:*

History

21 Nov 2024, 01:04

Type Values Removed Values Added
References () http://code.google.com/p/chromium/issues/detail?id=7338 - () http://code.google.com/p/chromium/issues/detail?id=7338 -
References () http://code.google.com/p/chromium/issues/detail?id=8473 - () http://code.google.com/p/chromium/issues/detail?id=8473 -
References () http://research.microsoft.com/apps/pubs/default.aspx?id=79323 - () http://research.microsoft.com/apps/pubs/default.aspx?id=79323 -
References () http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf - () http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf -
References () http://sites.google.com/a/chromium.org/dev/getting-involved/dev-channel/release-notes/releasenotes1015453 - () http://sites.google.com/a/chromium.org/dev/getting-involved/dev-channel/release-notes/releasenotes1015453 -
References () http://src.chromium.org/viewvc/chrome/branches/release_154.next/src/net/http/http_transaction_winhttp.cc?r1=11621&r2=11669&pathrev=11669 - () http://src.chromium.org/viewvc/chrome/branches/release_154.next/src/net/http/http_transaction_winhttp.cc?r1=11621&r2=11669&pathrev=11669 -
References () http://src.chromium.org/viewvc/chrome?view=rev&revision=11669 - () http://src.chromium.org/viewvc/chrome?view=rev&revision=11669 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=479880 - () https://bugzilla.mozilla.org/show_bug.cgi?id=479880 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/51194 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/51194 -

Information

Published : 2009-06-15 19:30

Updated : 2024-11-21 01:04


NVD link : CVE-2009-2060

Mitre link : CVE-2009-2060

CVE.ORG link : CVE-2009-2060


JSON object : View

Products Affected

google

  • chrome
CWE
CWE-287

Improper Authentication