CVE-2008-6998
CVE-2008-6998
Stack-based buffer overflow in chrome/common/gfx/url_elider.cc in Google Chrome 0.2.149.27 and other versions before 0.2.149.29 might allow user-assisted remote attackers to execute arbitrary code via a link target (href attribute) with a large number of path elements, which triggers the overflow when the status bar is updated after the user hovers over the link.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/6372unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://googlechromereleases.blogspot.com/2008/09/beta-release-0214929.htmlhttp://osvdb.org/48264https://exchange.xforce.ibmcloud.com/vulnerabilities/44934https://exchange.xforce.ibmcloud.com/vulnerabilities/45032http://shinnok.evonet.ro/vulns_html/chrome.htmlhttp://src.chromium.org/viewvc/chrome/branches/chrome_official_branch/src/chrome/common/gfx/url_elider.cc?r1=1774&r2=1797&pathrev=1797https://www.exploit-db.com/exploits/6372http://www.securityfocus.com/bid/31034http://www.securityfocus.com/bid/31071