Short Name |
HTTP:STC:CHROME:BUG-REPORT-CE |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Google Chrome Uninitialized bug_report_pointer Code Execution |
Release Date |
2011/01/20 |
Update Number |
1851 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known code execution vulnerability in Google Chrome. It is due to accessing an uninitialized memory during processing of URLs with rouge extensions; specifically to an invalid write in the browser process when trying to delete an invalid bug_report_ pointer. An attacker can leverage this by enticing a target user to open a crafted Web file. A successful attack can allow an attacker to execute arbitrary code in the security context of the logged in user. An unsuccessful attack can cause an abnormal termination of the affected product.
Google Chrome is prone to multiple vulnerabilities. Attackers may exploit these issues to execute arbitrary code in the context of the browser or cause denial-of-service conditions; other attacks are also possible. Chrome versions 8.x prior to 8.0.552.237 are vulnerable.