Google Chrome Javascript Memory Corruption Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 20 Jul 2009 4498 Views

RISK: Medium Risk

Medium Risk

Two vulnerabilities have been identified in Google Chrome, which could be exploited by remote attackers to compromise a vulnerable system.

1. A heap overflow error when evaluating a specially crafted regular expression in Javascript, which could be exploited to crash an affected browser and execute arbitrary code in the sandbox.

2. An error when allocate memory buffers for a renderer (tab) process, which could allow a compromised process (e.g. via the first issue) to cause the browser process (and all tabs) to crash or execute arbitrary code with the privileges of the logged on user, bypassing the sandbox.

Impact

  • Remote Code Execution

System / Technologies affected

  • Google Chrome versions prior to 2.0.172.37

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

Oracle Products Multiple Vulnerabilities ( 16 July 2009 )

16 Jul 2009 4535 Views

Next

Mozilla Products Memory Corruption and Security Bypass Vulnerabilities

23 Jul 2009 4446 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY