Vulnerability in Google Chrome

CVE-2010-1663

The Google URL Parsing Library (aka google-url or GURL) in Google Chrome before 4.1.249.1064 allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

EPSS: 0.541 (98.9th percentile) — read the EPSS interpretation.

Affected products

Google Chrome — versions 3.0.195.36, 1.0.154.48, 0.4.154.31
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

39651 (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
cve@mitre.org (x_refsource_CONFIRM)
cve@mitre.org (x_refsource_CONFIRM, Exploit)
oval:org.mitre.oval:def:6813 (x_refsource_OVAL, signature, vdb-entry)
ADV-2010-1016 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)