CVE-2018-6092
CVE-2018-6092
An integer overflow on 32-bit systems in WebAssembly in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
Affected products
Google · Chromepublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/44860/unverifiedexploitdbwww.exploit-db.com/exploits/44860unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://access.redhat.com/errata/RHSA-2018:1195https://chromereleases.googleblog.com/2018/04/stable-channel-update-for-desktop.htmlhttps://crbug.com/819869https://security.gentoo.org/glsa/201804-22https://www.debian.org/security/2018/dsa-4182https://www.exploit-db.com/exploits/44860/http://www.securityfocus.com/bid/103917