Google Chrome Invalid FTP Server Response Remote Denial of Service Vulnerability
BID:39183
Info
Google Chrome Invalid FTP Server Response Remote Denial of Service Vulnerability
| Bugtraq ID: | 39183 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 02 2010 12:00AM |
| Updated: | Apr 02 2010 12:00AM |
| Credit: | Tobias Klein |
| Vulnerable: |
Google Chrome 4.1.249 .1042 |
| Not Vulnerable: |
Google Chrome 4.1.249 .1045 |
Discussion
Google Chrome Invalid FTP Server Response Remote Denial of Service Vulnerability
Google Chrome is prone to a remote denial-of-service vulnerability because it fails to handle user-supplied input.
Attackers can exploit this issue to crash the application, denying service to legitimate users.
Google Chrome 4.1.249.1042 is vulnerable; other versions may also be affected.
Google Chrome is prone to a remote denial-of-service vulnerability because it fails to handle user-supplied input.
Attackers can exploit this issue to crash the application, denying service to legitimate users.
Google Chrome 4.1.249.1042 is vulnerable; other versions may also be affected.
Exploit / POC
Google Chrome Invalid FTP Server Response Remote Denial of Service Vulnerability
To exploit this issue, an attacker must entice an unsuspecting user into visiting a malicious website or FTP server.
To exploit this issue, an attacker must entice an unsuspecting user into visiting a malicious website or FTP server.
Solution / Fix
Google Chrome Invalid FTP Server Response Remote Denial of Service Vulnerability
Solution:
Reports indicate that updates are available to address this issue. Symantec has not confirmed this.
Solution:
Reports indicate that updates are available to address this issue. Symantec has not confirmed this.
References
Google Chrome Invalid FTP Server Response Remote Denial of Service Vulnerability
References:
References:
- Google Chrome Homepage (Google)
- Google Chrome OOB Array Indexing Bug (Tobias Klein)