critical
10
CWE
264
Advisory Published
Updated

CVE-2010-1663

First published: Fri Apr 30 2010(Updated: )

The Google URL Parsing Library (aka google-url or GURL) in Google Chrome before 4.1.249.1064 allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Google Chrome (Trace Event)=4.1.249.1017
Google Chrome (Trace Event)=2.0.172.8
Google Chrome (Trace Event)=0.3.154.3
Google Chrome (Trace Event)=3.0.182.2
Google Chrome (Trace Event)=4.1.249.1001
Google Chrome (Trace Event)=4.1.249.1011
Google Chrome (Trace Event)=4.1.249.1022
Google Chrome (Trace Event)=0.2.149.30
Google Chrome (Trace Event)=4.1.249.1027
Google Chrome (Trace Event)=3.0.195.38
Google Chrome (Trace Event)=0.4.154.31
Google Chrome (Trace Event)=1.0.154.39
Google Chrome (Trace Event)=2.0.172.38
Google Chrome (Trace Event)=1.0.154.59
Google Chrome (Trace Event)=4.1.249.1008
Google Chrome (Trace Event)=0.2.149.27
Google Chrome (Trace Event)=1.0.154.53
Google Chrome (Trace Event)=0.4.154.33
Google Chrome (Trace Event)=2.0.170.0
Google Chrome (Trace Event)=4.1.249.1019
Google Chrome (Trace Event)=1.0.154.43
Google Chrome (Trace Event)=4.1.249.1042
Google Chrome (Trace Event)=4.1.249.1012
Google Chrome (Trace Event)=3.0.195.2
Google Chrome (Trace Event)=4.1.249.1006
Google Chrome (Trace Event)=1.0.154.42
Google Chrome (Trace Event)=2.0.169.1
Google Chrome (Trace Event)=4.1.249.1014
Google Chrome (Trace Event)=2.0.172.33
Google Chrome (Trace Event)=4.1.249.1028
Google Chrome (Trace Event)=3.0.195.24
Google Chrome (Trace Event)=4.1.249.1007
Google Chrome (Trace Event)=4.1-beta
Google Chrome (Trace Event)=3.0.195.33
Google Chrome (Trace Event)=4.1.249.1059
Google Chrome (Trace Event)=4.1.249.1045
Google Chrome (Trace Event)=4.1.249.1009
Google Chrome (Trace Event)=4.1.249.1036
Google Chrome (Trace Event)=4.1.249.1018
Google Chrome (Trace Event)=1.0.154.52
Google Chrome (Trace Event)=2.0.172.27
Google Chrome (Trace Event)=4.1.249.1034
Google Chrome (Trace Event)=4.1.249.1058
Google Chrome (Trace Event)=1.0.154.65
Google Chrome (Trace Event)=4.1.249.0
Google Chrome (Trace Event)=4.1.249.1029
Google Chrome (Trace Event)=2.0.157.2
Google Chrome (Trace Event)=4.1.249.1051
Google Chrome (Trace Event)=0.4.154.18
Google Chrome (Trace Event)=3.0.195.27
Google Chrome (Trace Event)=4.1.249.1048
Google Chrome (Trace Event)=0.2.149.29
Google Chrome (Trace Event)=3.0.195.25
Google Chrome (Trace Event)=2.0.157.0
Google Chrome (Trace Event)=4.1.249.1025
Google Chrome (Trace Event)=4.1.249.1010
Google Chrome (Trace Event)=4.1.249.1057
Google Chrome (Trace Event)=0.2.152.1
Google Chrome (Trace Event)=0.3.154.0
Google Chrome (Trace Event)=4.1.249.1050
Google Chrome (Trace Event)=4.1.249.1053
Google Chrome (Trace Event)=4.1.249.1026
Google Chrome (Trace Event)=4.1.249.1024
Google Chrome (Trace Event)=3.0.195.36
Google Chrome (Trace Event)=0.2.153.1
Google Chrome (Trace Event)=4.1.249.1031
Google Chrome (Trace Event)=2.0.172.2
Google Chrome (Trace Event)=3.0.195.21
Google Chrome (Trace Event)=4.1.249.1032
Google Chrome (Trace Event)=4.1.249.1004
Google Chrome (Trace Event)<=4.1.249.1063
Google Chrome (Trace Event)=1.0.154.64
Google Chrome (Trace Event)=2.0.169.0
Google Chrome (Trace Event)=4.1.249.1047
Google Chrome (Trace Event)=1.0.154.36
Google Chrome (Trace Event)=2.0.172
Google Chrome (Trace Event)=2.0.172.30
Google Chrome (Trace Event)=3.0.193.2-beta
Google Chrome (Trace Event)=4.1.249.1052
Google Chrome (Trace Event)=2.0.156.1
Google Chrome (Trace Event)=4.1.249.1060
Google Chrome (Trace Event)=4.1.249.1056
Google Chrome (Trace Event)=4.1.249.1033
Google Chrome (Trace Event)=3.0.195.32
Google Chrome (Trace Event)=4.1.249.1030
Google Chrome (Trace Event)=4.1.249.1016
Google Chrome (Trace Event)=1.0.154.46
Google Chrome (Trace Event)=3.0.190.2
Google Chrome (Trace Event)=4.1.249.1055
Google Chrome (Trace Event)=4.1.249.1046
Google Chrome (Trace Event)=0.4.154.22
Google Chrome (Trace Event)=4.1.249.1023
Google Chrome (Trace Event)=2.0.159.0
Google Chrome (Trace Event)=4.1.249.1062
Google Chrome (Trace Event)=2.0.158.0
Google Chrome (Trace Event)=4.1.249.1049
Google Chrome (Trace Event)=2.0.172.28
Google Chrome (Trace Event)=4.1.249.1035
Google Chrome (Trace Event)=2.0.172.31
Google Chrome (Trace Event)=1.0.154.48
Google Chrome (Trace Event)=4.1.249.1061
Google Chrome (Trace Event)=4.1.249.1054
Google Chrome (Trace Event)=4.1.249.1020
Google Chrome (Trace Event)=2.0.172.37
Google Chrome (Trace Event)=3.0.195.37
Google Chrome (Trace Event)=4.1.249.1015
Google Chrome (Trace Event)=4.1.249.1013
Google Chrome (Trace Event)=4.1.249.1021
Google Chrome<=4.1.249.1063
Google Chrome=0.2.149.27
Google Chrome=0.2.149.29
Google Chrome=0.2.149.30
Google Chrome=0.2.152.1
Google Chrome=0.2.153.1
Google Chrome=0.3.154.0
Google Chrome=0.3.154.3
Google Chrome=0.4.154.18
Google Chrome=0.4.154.22
Google Chrome=0.4.154.31
Google Chrome=0.4.154.33
Google Chrome=1.0.154.36
Google Chrome=1.0.154.39
Google Chrome=1.0.154.42
Google Chrome=1.0.154.43
Google Chrome=1.0.154.46
Google Chrome=1.0.154.48
Google Chrome=1.0.154.52
Google Chrome=1.0.154.53
Google Chrome=1.0.154.59
Google Chrome=1.0.154.64
Google Chrome=1.0.154.65
Google Chrome=2.0.156.1
Google Chrome=2.0.157.0
Google Chrome=2.0.157.2
Google Chrome=2.0.158.0
Google Chrome=2.0.159.0
Google Chrome=2.0.169.0
Google Chrome=2.0.169.1
Google Chrome=2.0.170.0
Google Chrome=2.0.172
Google Chrome=2.0.172.2
Google Chrome=2.0.172.8
Google Chrome=2.0.172.27
Google Chrome=2.0.172.28
Google Chrome=2.0.172.30
Google Chrome=2.0.172.31
Google Chrome=2.0.172.33
Google Chrome=2.0.172.37
Google Chrome=2.0.172.38
Google Chrome=3.0.182.2
Google Chrome=3.0.190.2
Google Chrome=3.0.193.2-beta
Google Chrome=3.0.195.2
Google Chrome=3.0.195.21
Google Chrome=3.0.195.24
Google Chrome=3.0.195.25
Google Chrome=3.0.195.27
Google Chrome=3.0.195.32
Google Chrome=3.0.195.33
Google Chrome=3.0.195.36
Google Chrome=3.0.195.37
Google Chrome=3.0.195.38
Google Chrome=4.1-beta
Google Chrome=4.1.249.0
Google Chrome=4.1.249.1001
Google Chrome=4.1.249.1004
Google Chrome=4.1.249.1006
Google Chrome=4.1.249.1007
Google Chrome=4.1.249.1008
Google Chrome=4.1.249.1009
Google Chrome=4.1.249.1010
Google Chrome=4.1.249.1011
Google Chrome=4.1.249.1012
Google Chrome=4.1.249.1013
Google Chrome=4.1.249.1014
Google Chrome=4.1.249.1015
Google Chrome=4.1.249.1016
Google Chrome=4.1.249.1017
Google Chrome=4.1.249.1018
Google Chrome=4.1.249.1019
Google Chrome=4.1.249.1020
Google Chrome=4.1.249.1021
Google Chrome=4.1.249.1022
Google Chrome=4.1.249.1023
Google Chrome=4.1.249.1024
Google Chrome=4.1.249.1025
Google Chrome=4.1.249.1026
Google Chrome=4.1.249.1027
Google Chrome=4.1.249.1028
Google Chrome=4.1.249.1029
Google Chrome=4.1.249.1030
Google Chrome=4.1.249.1031
Google Chrome=4.1.249.1032
Google Chrome=4.1.249.1033
Google Chrome=4.1.249.1034
Google Chrome=4.1.249.1035
Google Chrome=4.1.249.1036
Google Chrome=4.1.249.1042
Google Chrome=4.1.249.1045
Google Chrome=4.1.249.1046
Google Chrome=4.1.249.1047
Google Chrome=4.1.249.1048
Google Chrome=4.1.249.1049
Google Chrome=4.1.249.1050
Google Chrome=4.1.249.1051
Google Chrome=4.1.249.1052
Google Chrome=4.1.249.1053
Google Chrome=4.1.249.1054
Google Chrome=4.1.249.1055
Google Chrome=4.1.249.1056
Google Chrome=4.1.249.1057
Google Chrome=4.1.249.1058
Google Chrome=4.1.249.1059
Google Chrome=4.1.249.1060
Google Chrome=4.1.249.1061
Google Chrome=4.1.249.1062

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2010-1663?

    CVE-2010-1663 is classified as a medium severity vulnerability, allowing potential bypass of the Same Origin Policy.

  • How do I fix CVE-2010-1663?

    To resolve CVE-2010-1663, update Google Chrome to version 4.1.249.1064 or later.

  • Which versions of Google Chrome are affected by CVE-2010-1663?

    CVE-2010-1663 affects multiple versions of Google Chrome prior to 4.1.249.1064, including versions from 0.2.149.0 up to 4.1.249.1063.

  • What type of vulnerability is CVE-2010-1663?

    CVE-2010-1663 is a web security vulnerability that allows attackers to bypass the Same Origin Policy.

  • Is there a patch for CVE-2010-1663?

    Yes, a patch for CVE-2010-1663 was included in updates to Google Chrome released after version 4.1.249.1064.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203