ByteOS Network

NVD Vulnerability Details :

CVE-2011-1190

Deferred

Source-cve@mitre.org

Published At-11 Mar, 2011 | 02:01

Updated At-11 Apr, 2025 | 00:51

The Web Workers implementation in Google Chrome before 10.0.648.127 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, related to an "error message leak."

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N

Type: Primary

Version: 2.0

Base score: 5.0

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:N/C:P/I:N/A:N

CPE Matches

Google LLC

>>chrome>>Versions before 10.0.648.127(exclusive)

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Apple Inc.

>>safari>>Versions before 5.0.6(exclusive)

cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*

Apple Inc.

>>iphone_os>>Versions before 5.0(exclusive)

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-200	Primary	nvd@nist.gov

CWE ID: CWE-200

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://code.google.com/p/chromium/issues/detail?id=70336	cve@mitre.org	Exploit Issue Tracking Patch Vendor Advisory
http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html	cve@mitre.org	Vendor Advisory
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html	cve@mitre.org	Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2011//Jul/msg00002.html	cve@mitre.org	Mailing List Third Party Advisory
http://support.apple.com/kb/HT4808	cve@mitre.org	Third Party Advisory
http://support.apple.com/kb/HT4999	cve@mitre.org	Third Party Advisory
http://www.securityfocus.com/bid/46785	cve@mitre.org	Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2011/0628	cve@mitre.org	Permissions Required
https://exchange.xforce.ibmcloud.com/vulnerabilities/65954	cve@mitre.org	Third Party Advisory VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14398	cve@mitre.org	Third Party Advisory
http://code.google.com/p/chromium/issues/detail?id=70336	af854a3a-2127-422b-91ae-364da2661108	Exploit Issue Tracking Patch Vendor Advisory
http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html	af854a3a-2127-422b-91ae-364da2661108	Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2011//Jul/msg00002.html	af854a3a-2127-422b-91ae-364da2661108	Mailing List Third Party Advisory
http://support.apple.com/kb/HT4808	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://support.apple.com/kb/HT4999	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://www.securityfocus.com/bid/46785	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2011/0628	af854a3a-2127-422b-91ae-364da2661108	Permissions Required
https://exchange.xforce.ibmcloud.com/vulnerabilities/65954	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14398	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory