Vulnerability Name:

CVE-2009-0276 (CCN-48388)

Assigned:2009-01-28
Published:2009-01-28
Updated:2009-02-04
Summary:Cross-domain vulnerability in the V8 JavaScript engine in Google Chrome before 1.0.154.46 allows remote attackers to bypass the Same Origin Policy via a crafted script that accesses another frame and reads its full URL and possibly other sensitive information, or modifies the URL of this frame.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
4.3 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Obtain Information
References:Source: CONFIRM
Type: UNKNOWN
http://codereview.chromium.org/18531

Source: MITRE
Type: CNA
CVE-2009-0276

Source: CCN
Type: Google Chrome Releases Blog, Wednesday, January 28, 2009 | 00:37
Stable, Beta update: Yahoo! Mail and Security Fixes

Source: CONFIRM
Type: Vendor Advisory
http://googlechromereleases.blogspot.com/2009/01/stable-beta-update-yahoo-mail-and.html

Source: CCN
Type: SA33754
Google Chrome Cross-Site Scripting and Information Disclosure

Source: SECUNIA
Type: Vendor Advisory
33754

Source: CONFIRM
Type: UNKNOWN
http://sites.google.com/a/chromium.org/dev/getting-involved/dev-channel/release-notes

Source: CONFIRM
Type: UNKNOWN
http://src.chromium.org/viewvc/chrome?view=rev&revision=8524

Source: CCN
Type: Google Chrome Web site
Google Chrome

Source: CCN
Type: OSVDB ID: 52641
Google Chrome V8 JavaScript Engine Crafted Script Cross-domain Information Disclosure

Source: CCN
Type: BID-33529
Google Chrome Cross Site Scripting and Cross Domain Security Bypass Vulnerabilities

Source: XF
Type: UNKNOWN
googlechrome-v8javascript-info-disclosure(48388)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:google:chrome:0.2.152.1:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:0.2.153.1:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:0.3.154.0:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:0.3.154.3:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:0.4.154.18:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:0.4.154.22:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:0.4.154.31:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:0.4.154.33:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:1.0.154.36:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:1.0.154.39:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:1.0.154.42:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version <= 1.0.154.43)

    • Configuration CCN 1:
  • cpe:/a:google:chrome:1.0.154.36:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    google chrome 0.2.152.1
    google chrome 0.2.153.1
    google chrome 0.3.154.0
    google chrome 0.3.154.3
    google chrome 0.4.154.18
    google chrome 0.4.154.22
    google chrome 0.4.154.31
    google chrome 0.4.154.33
    google chrome 1.0.154.36
    google chrome 1.0.154.39
    google chrome 1.0.154.42
    google chrome *
    google chrome 1.0.154.36