← Back

CVE-2009-1412

nvd nist
Published: Apr 24, 2009Modified: Apr 23, 2026

JSON object

Loading...
7.8
Vector
AV:N/AC:L/Au:N/C:C/I:N/A:N
Exploitability: 10.0 / Impact: 6.9
Source: NVD

Description

Argument injection vulnerability in the chromehtml: protocol handler in Google Chrome before 1.0.154.59, when invoked by Internet Explorer, allows remote attackers to determine the existence of files, and open tabs for URLs that do not satisfy the IsWebSafeScheme restriction, via a web page that sets document.location to a chromehtml: value, as demonstrated by use of a (1) javascript: or (2) data: URL. NOTE: this can be leveraged for Universal XSS by exploiting certain behavior involving persistence across page transitions.

Affected (16)

Products: Google: Chrome
Google
1 product
Chrome
Configuration A
16 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Google
Chrome
Up to 1.0.154.53
Chrome
Version 0.2.149.29
Chrome
Version 0.2.149.30
Chrome
Version 0.2.152.1
Chrome
Version 0.2.153.1
Chrome
Version 0.3.154.0
Chrome
Version 0.3.154.3
Chrome
Version 0.4.154.18
Chrome
Version 0.4.154.22
Chrome
Version 0.4.154.31
Chrome
Version 0.4.154.33
Chrome
Version 1.0.154.36
Chrome
Version 1.0.154.39
Chrome
Version 1.0.154.42
Chrome
Version 1.0.154.43
Chrome
Version 1.0.154.46
Running on/withPlatform Versions
Microsoft
Internet Explorer
Version 7

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (8)

Source: cve@mitre.org
ExploitVendor Advisory
Source: cve@mitre.org
Exploit
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.