CVE-2009-2060
First published: Mon Jun 15 2009(Updated: )
src/net/http/http_transaction_winhttp.cc in Google Chrome before 1.0.154.53 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Chrome | <=1.0.154.52 | |
| Google Chrome | =0.2.149.29 | |
| Google Chrome | =0.2.149.30 | |
| Google Chrome | =0.2.152.1 | |
| Google Chrome | =0.2.153.1 | |
| Google Chrome | =0.3.154.0 | |
| Google Chrome | =0.3.154.3 | |
| Google Chrome | =0.4.154.18 | |
| Google Chrome | =0.4.154.22 | |
| Google Chrome | =0.4.154.31 | |
| Google Chrome | =0.4.154.33 | |
| Google Chrome | =1.0.154.36 | |
| Google Chrome | =1.0.154.39 | |
| Google Chrome | =1.0.154.42 | |
| Google Chrome | =1.0.154.43 | |
| Google Chrome | =1.0.154.46 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://src.chromium.org/viewvc/chrome/branches/release_154.next/src/net/http/http_transaction_winhttp.cc?r1=11621&r2=11669&pathrev=11669
- https://bugzilla.mozilla.org/show_bug.cgi?id=479880
- http://code.google.com/p/chromium/issues/detail?id=7338
- http://research.microsoft.com/apps/pubs/default.aspx?id=79323
- http://sites.google.com/a/chromium.org/dev/getting-involved/dev-channel/release-notes/releasenotes1015453
- http://code.google.com/p/chromium/issues/detail?id=8473
- http://src.chromium.org/viewvc/chrome?view=rev&revision=11669
- http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51194
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/google
- canonical/google chrome
- version/google chrome/0.3.154.3
- version/google chrome/0.2.149.30
- version/google chrome/0.4.154.31
- version/google chrome/1.0.154.39
- version/google chrome/0.4.154.33
- version/google chrome/1.0.154.43
- version/google chrome/1.0.154.42
- version/google chrome/0.4.154.18
- version/google chrome/0.2.149.29
- version/google chrome/0.2.152.1
- version/google chrome/0.3.154.0
- version/google chrome/0.2.153.1
- version/google chrome/1.0.154.36
- version/google chrome/1.0.154.46
- version/google chrome/0.4.154.22
- version/google chrome/1.0.154.52