Integer underflow in net/base/escape.cc in chrome.dll in Google Chrome 0.2.149.27 allows remote malicious users to cause a denial of service (browser crash) via a URI with an invalid handler followed by a "%" (percent) character, which triggers a buffer over-read, as demonstrated using an "about:%" URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google chrome 0.2.149.27 |