Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An unspecified function in the JavaScript implementation in Google Chrome creates and exposes a "temporary footprint" when there is a current login to a web site, which makes it easier for remote attackers to trick a user into acting upon a spoofed pop-up message, aka an "in-session phishing attack." NOTE: as of 20090116, the only disclosure is a vague pre-advisory with no actionable information. However, because it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Chrome 安全漏洞
Vulnerability Description
Google Chrome是美国谷歌(Google)公司的一款Web浏览器。 Google Chrome 存在安全漏洞,当用户正在对一个网站进行登录时,Google Chrome中的JavaScript执行工具里的一个未明函数会创建和显示一个临时覆盖区,这使得远程攻击者更易于欺骗用户,使其对一个虚假的pop-up信息进行反应,又称in-session钓鱼攻击。
CVSS Information
N/A
Vulnerability Type
N/A