CVE-2015-1229 in Chromeinformation

Résumé (Anglaise)

net/http/proxy_client_socket.cc in Google Chrome before 41.0.2272.76 does not properly handle a 407 (aka Proxy Authentication Required) HTTP status code accompanied by a Set-Cookie header, which allows remote proxy servers to conduct cookie-injection attacks via a crafted response.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Réserver

21/01/2015

Divulgation

08/03/2015

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
73924	Google Chrome Proxy proxy_client_socket.cc	19	Non prouvée	Correctif officiel	CVE-2015-1229

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PrécédentAperçuSuivant ▸

Want to know what is going to be exploited?

We predict KEV entries!