SecuritySpace - CVE-2009-0411

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2009-0411

Description: Google Chrome before 1.0.154.46 does not properly restrict access from web pages to the (1) Set-Cookie and (2) Set-Cookie2 HTTP response headers, which allows remote attackers to obtain sensitive information from cookies via XMLHttpRequest calls and other web script.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2009-0411
XForce ISS Database: googlechrome-xmlhttprequest-info-disclosure(48554)
https://exchange.xforce.ibmcloud.com/vulnerabilities/48554

CVE ID:	CVE-2009-0411
Description:	Google Chrome before 1.0.154.46 does not properly restrict access from web pages to the (1) Set-Cookie and (2) Set-Cookie2 HTTP response headers, which allows remote attackers to obtain sensitive information from cookies via XMLHttpRequest calls and other web script.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0411 XForce ISS Database: googlechrome-xmlhttprequest-info-disclosure(48554) https://exchange.xforce.ibmcloud.com/vulnerabilities/48554