CVE-2010-0661

CVE-2010-0661 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome before 4.0.249.78, allows remote attackers to bypass the Same Origin Policy via vectors involving the window.open method.

Learn more about our Cis Benchmark Audit For Bind.