Google Chrome Remote Denial of Service Vulnerability
BID:30983
Info
Google Chrome Remote Denial of Service Vulnerability
| Bugtraq ID: | 30983 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2008-6995 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 03 2008 12:00AM |
| Updated: | May 07 2015 05:24PM |
| Credit: | Rishi Narang |
| Vulnerable: |
Google Chrome 0.2.149 .27 |
| Not Vulnerable: |
Google Chrome 0.2.149 .29 |
Discussion
Google Chrome Remote Denial of Service Vulnerability
Google Chrome is prone to a remote denial-of-service vulnerability because the application fails to gracefully handle certain user-supplied data.
Attackers can exploit this issue to crash the affected application, denying service to legitimate users.
Google Chrome 0.2.149.27 is vulnerable; other versions may also be affected.
Google Chrome is prone to a remote denial-of-service vulnerability because the application fails to gracefully handle certain user-supplied data.
Attackers can exploit this issue to crash the affected application, denying service to legitimate users.
Google Chrome 0.2.149.27 is vulnerable; other versions may also be affected.
Exploit / POC
Google Chrome Remote Denial of Service Vulnerability
The following example link is available:
<a href="EVIL:%">Here</a>
The following example link is available:
<a href="EVIL:%">Here</a>
Solution / Fix
Google Chrome Remote Denial of Service Vulnerability
Solution:
The vendor has addressed this issue in Chrome 0.2.149.29. Contact the vendor for details on obtaining the appropriate update.
Solution:
The vendor has addressed this issue in Chrome 0.2.149.29. Contact the vendor for details on obtaining the appropriate update.
References
Google Chrome Remote Denial of Service Vulnerability
References:
References: