| Vulnerability Name: | CVE-2010-1230 (CCN-57039) | ||||||||
| Assigned: | 2010-03-17 | ||||||||
| Published: | 2010-03-17 | ||||||||
| Updated: | 2018-11-16 | ||||||||
| Summary: | Google Chrome before 4.1.249.1036 does not have the expected behavior for attempts to delete Web SQL Databases and clear the Strict Transport Security (STS) state, which has unspecified impact and attack vectors. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
| ||||||||
| CVSS v2 Severity: | 10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C) 7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-200 | ||||||||
| Vulnerability Consequences: | Other | ||||||||
| References: | Source: CONFIRM Type: Vendor Advisory http://code.google.com/p/chromium/issues/detail?id=30801 Source: CONFIRM Type: Vendor Advisory http://code.google.com/p/chromium/issues/detail?id=33445 Source: MITRE Type: CNA CVE-2010-1230 Source: CCN Type: Google Chrome Releases Web site Stable Channel Update Source: CONFIRM Type: Third Party Advisory http://googlechromereleases.blogspot.com/2010/03/stable-channel-update.html Source: CCN Type: SA39029 Google Chrome Multiple Vulnerabilities Source: CCN Type: OSVDB ID: 63108 Google Chrome Web Database / STS Persistent Metadata Unspecified Issue Source: CCN Type: BID-38829 Google Chrome prior to 4.1.249.1036 Multiple Security Vulnerabilities Source: XF Type: UNKNOWN google-chrome-metadata-unspecified(57039) Source: OVAL Type: Third Party Advisory oval:org.mitre.oval:def:14292 | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| Oval Definitions | |||||||||
| |||||||||
| BACK | |||||||||