Published: 19/08/2009 Updated: 29/09/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in chrome/common/gfx/url_elider.cc in Google Chrome 0.2.149.27 and other versions prior to 0.2.149.29 might allow user-assisted remote malicious users to execute arbitrary code via a link target (href attribute) with a large number of path elements, which triggers the overflow when the status bar is updated after the user hovers over the link.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome 0.2.149.27

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 11//EN" "wwww3org/TR/xhtml11/DTD/xhtml11dtd"> <html> <head> <title>Google Chrome Browser 0214927 Remote DoS</title> </head> <body> <a href="shinnokevonetro/vulns_html/chromehtml"><h1>Google Chrome Browser 0214927 Remote ...

CWE-119 http://src.chromium.org/viewvc/chrome/branches/chrome_official_branch/src/chrome/common/gfx/url_elider.cc?r1=1774&r2=1797&pathrev=1797 http://www.securityfocus.com/bid/31071 http://www.securityfocus.com/bid/31034 http://googlechromereleases.blogspot.com/2008/09/beta-release-0214929.html http://shinnok.evonet.ro/vulns_html/chrome.html http://osvdb.org/48264 https://exchange.xforce.ibmcloud.com/vulnerabilities/45032 https://exchange.xforce.ibmcloud.com/vulnerabilities/44934 https://www.exploit-db.com/exploits/6372 https://nvd.nist.gov https://www.exploit-db.com/exploits/6372/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-6998

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect