Information disclosure vulnerability in Google Chrome (rpm) before 4.0.249.78 via standard HTTP loggingID: oval:org.secpod.oval:def:765 | Date: (C)2011-04-20 (M)2022-10-10 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome before 4.0.249.78 and is prone to information disclosure vulnerability. A flaw is present in the application which sends an https URL in the Referer header of an http request in certain circumstances involving https to http redirection. Successful exploitation allow remote HTTP servers to obtain potentially sensitive information.