Описание
Integer underflow in net/base/escape.cc in chrome.dll in Google Chrome 0.2.149.27 allows remote attackers to cause a denial of service (browser crash) via a URI with an invalid handler followed by a "%" (percent) character, which triggers a buffer over-read, as demonstrated using an "about:%" URI.
Ссылки
- Exploit
- Exploit
- Exploit
- Exploit
- Exploit
- Exploit
- Exploit
- Exploit
- Exploit
- Exploit
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:google:chrome:0.2.149.27:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.098
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-189
Связанные уязвимости
debian
больше 16 лет назад
Integer underflow in net/base/escape.cc in chrome.dll in Google Chrome ...
github
больше 3 лет назад
Integer underflow in net/base/escape.cc in chrome.dll in Google Chrome 0.2.149.27 allows remote attackers to cause a denial of service (browser crash) via a URI with an invalid handler followed by a "%" (percent) character, which triggers a buffer over-read, as demonstrated using an "about:%" URI.
EPSS
Процентиль: 93%
0.098
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-189