CVE-2010-1851

Google Chrome - Exposure of Sensitive Information via Invisible Hand Extension Cookie Handling

Title source: llm
STIX 2.1

Description

Google Chrome, when the Invisible Hand extension is enabled, uses cookies during background HTTP requests in a possibly unexpected manner, which might allow remote web servers to identify specific persons and their product searches via HTTP request logging, related to a "cross-site data leakage" issue.

References (2)

Core 2
Core References
Various Sources x_refsource_misc
http://www.cnet.com/8301-31361_1-20004265-254.html
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11757

Scores

EPSS 0.0046
EPSS Percentile 36.5%

Details

CWE
CWE-200
Status published
Products (50)
google/chrome 0.1.38.1
google/chrome 0.1.38.2
google/chrome 0.1.38.4
google/chrome 0.1.40.1
google/chrome 0.1.42.2
google/chrome 0.1.42.3
google/chrome 1.0.154.53
google/chrome 1.0.154.59
google/chrome 1.0.154.64
google/chrome 1.0.154.65
... and 40 more
Published May 07, 2010
Tracked Since Feb 18, 2026