Oval Definition:oval:org.mitre.oval:def:14407
Revision Date:2014-04-07Version:39
Title:browser/login/login_prompt.cc in Google Chrome before 4.0.249.89 populates an authentication dialog with credentials that were stored by Password Manager for a different web site, which allows user-assisted remote HTTP servers to obtain sensitive information via a URL that requires authentication, as demonstrated by a URL in the SRC attribute of an IMG element.
Description:browser/login/login_prompt.cc in Google Chrome before 4.0.249.89 populates an authentication dialog with credentials that were stored by Password Manager for a different web site, which allows user-assisted remote HTTP servers to obtain sensitive information via a URL that requires authentication, as demonstrated by a URL in the SRC attribute of an IMG element.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-0556
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Google Chrome
Definition Synopsis
  • Determine if the version of Google Chrome is less than or equal to 2.0.172.38 and is greater than or equal to 2.0.156.1
  • Google Chrome is installed
  • AND Determine if the version of Google Chrome is less than or equal to 2.0.172.38
  • AND Determine if the version of Google Chrome is greater than or equal to 2.0.156.1
  • OR Determine if the version of Google Chrome is less than or equal to 3.0.195.33 and is greater than or equal to 3.0.182.2
  • Google Chrome is installed
  • AND Determine if the version of Google Chrome is less than or equal to 3.0.195.33
  • AND Determine if the version of Google Chrome is greater than or equal to 3.0.182.2
  • OR Determine if the version of Google Chrome is less than or equal to 0.4.154.33 and is greater than or equal to 0.2.149.27
  • Google Chrome is installed
  • AND Determine if the version of Google Chrome is less than or equal to 0.4.154.33
  • AND Determine if the version of Google Chrome is greater than or equal to 0.2.149.27
  • OR Determine if the version of Google Chrome is less than or equal to 1.0.154.65 and is greater than or equal to 1.0.154.36
  • Google Chrome is installed
  • AND Determine if the version of Google Chrome is less than or equal to 1.0.154.65
  • AND Determine if the version of Google Chrome is greater than or equal to 1.0.154.36
  • OR Determine if the version of Google Chrome is equal to 4.0.249.78
  • Google Chrome is installed
  • AND Determine if the version of Google Chrome is equal to 4.0.249.78
    • BACK