Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2010-0643 | First vendor Publication | 2010-02-18 |
Vendor | Cve | Last vendor Modification | 2017-09-19 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:P/I:N/A:N) | |||
---|---|---|---|
Cvss Base Score | 4.3 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are unavailable, which allows remote HTTP servers to obtain potentially sensitive information about the identity of a client user via standard HTTP logging, as demonstrated by a proxy server that was configured for the purpose of anonymity. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0643 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-200 | Information Exposure |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:14500 | |||
Oval ID: | oval:org.mitre.oval:def:14500 | ||
Title: | Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are unavailable, which allows remote HTTP servers to obtain potentially sensitive information about the identity of a client user via standard HTTP logging, as demonstrated by a proxy server that was configured for the purpose of anonymity. | ||
Description: | Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are unavailable, which allows remote HTTP servers to obtain potentially sensitive information about the identity of a client user via standard HTTP logging, as demonstrated by a proxy server that was configured for the purpose of anonymity. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-0643 | Version: | 15 |
Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Google Chrome |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2010-02-22 | Name : Google Chrome Multiple Vulnerabilities - (Windows) File : nvt/secpod_google_chrome_mult_vuln_win02.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
62315 | Google Chrome Domain Name Resolution Proxy List Interpretation Information Di... |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2010-02-11 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_4_0_249_89.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-05-05 01:06:48 |
|
2021-05-04 12:11:14 |
|
2021-04-22 01:11:43 |
|
2020-09-29 01:05:17 |
|
2020-05-23 01:41:42 |
|
2020-05-23 00:25:19 |
|
2017-09-19 09:23:39 |
|
2017-08-17 09:22:55 |
|
2016-06-28 18:02:41 |
|
2016-04-26 19:35:46 |
|
2014-02-17 10:53:58 |
|
2013-05-10 23:18:47 |
|