CVE-2010-1760

loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has unspecified impact and remote attack vectors, aka rdar problem 7905150.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:apple:webkit:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:webkit:r56188:*:*:*:*:*:*:*
cpe:2.3:a:apple:webkit:r56379:*:*:*:*:*:*:*
cpe:2.3:a:apple:webkit:r50173:*:*:*:*:*:*:*
cpe:2.3:a:apple:webkit:r56187:*:*:*:*:*:*:*

Information

Published : 2010-08-19 15:00

Updated : 2011-03-17 19:49


NVD link : CVE-2010-1760

Mitre link : CVE-2010-1760


JSON object : View

CWE
CWE-255

Credentials Management Errors

Advertisement

dedicated server usa

Products Affected

apple

  • webkit