CVE-2010-3417

Google Chrome before 6.0.472.59 does not prompt the user before granting access to the extension history, which allows attackers to obtain potentially sensitive information via unspecified vectors.
Configurations

Configuration 1 (hide)

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:18

Type Values Removed Values Added
References () http://code.google.com/p/chromium/issues/detail?id=54006 - Patch, Vendor Advisory () http://code.google.com/p/chromium/issues/detail?id=54006 - Patch, Vendor Advisory
References () http://googlechromereleases.blogspot.com/2010/09/stable-beta-channel-updates_14.html - Vendor Advisory () http://googlechromereleases.blogspot.com/2010/09/stable-beta-channel-updates_14.html - Vendor Advisory
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7371 - Third Party Advisory () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7371 - Third Party Advisory

Information

Published : 2010-09-16 21:00

Updated : 2024-11-21 01:18


NVD link : CVE-2010-3417

Mitre link : CVE-2010-3417

CVE.ORG link : CVE-2010-3417


JSON object : View

Products Affected

google

  • chrome
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor