CVE-2009-2816

The implementation of Cross-Origin Resource Sharing (CORS) in WebKit, as used in Apple Safari before 4.0.4 and Google Chrome before 3.0.195.33, includes certain custom HTTP headers in the OPTIONS request during cross-origin operations with preflight, which makes it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks via a crafted web page.

🔗 References (44)

• cve@mitrehttp://lists.apple.com/archives/security-announce/2009/Nov/msg00001.html
• cve@mitrehttp://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html
• cve@mitrehttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
• cve@mitrehttp://osvdb.org/59940
• cve@mitrehttp://osvdb.org/59967
• cve@mitrehttp://secunia.com/advisories/37346
• cve@mitrehttp://secunia.com/advisories/37358
• cve@mitrehttp://secunia.com/advisories/37393
• cve@mitrehttp://secunia.com/advisories/37397
• cve@mitrehttp://secunia.com/advisories/43068
• cve@mitrehttp://support.apple.com/kb/HT3949
• cve@mitrehttp://support.apple.com/kb/HT4225
• cve@mitrehttp://www.securityfocus.com/bid/36997
• cve@mitrehttp://www.securitytracker.com/id?1023165
• cve@mitrehttp://www.vupen.com/english/advisories/2009/3217