Signature Detail

HTTP: Google Chrome Uninitialized bug_report_pointer Code Execution1

This signature detects attempts to exploit a known code execution vulnerability in Google Chrome. It is due to accessing an uninitialized memory during processing of URLs with rouge extensions; specifically to an invalid write in the browser process when trying to delete an invalid bug_report_ pointer. An attacker can leverage this by enticing a target user to open a crafted Web file. A successful attack can allow an attacker to execute arbitrary code in the security context of the logged in user. An unsuccessful attack can cause an abnormal termination of the affected product.