CVE-2010-0556 (retired)

Priority
Description
browser/login/login_prompt.cc in Google Chrome before 4.0.249.89 populates
an authentication dialog with credentials that were stored by Password
Manager for a different web site, which allows user-assisted remote HTTP
servers to obtain sensitive information via a URL that requires
authentication, as demonstrated by a URL in the SRC attribute of an IMG
element.
Notes
 mdeslaur> fixed in r36829
Package
Upstream:needs-triage
More Information

Updated: 2019-08-23 08:37:28 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)