CVE-2008-6997

Google Chrome 0.2.149.27 - Denial of Service via Long IMG src Attribute

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-6997. PoCs published by Metacortex.

AI-analyzed exploit summary The provided HTML file contains an excessively long and repetitive image source URL, which appears to be an attempt to exploit a potential buffer overflow or DoS vulnerability in a web browser or server. However, the lack of clear exploit mechanics or payload suggests it may be a stub or a poorly constructed PoC.

Description

Google Chrome 0.2.149.27 allows user-assisted remote attackers to cause a denial of service (browser crash) via an IMG tag with a long src attribute, which triggers the crash when the victim performs an "Inspect Element" action.

Exploits (1)

exploitdb SUSPICIOUS VERIFIED

by Metacortex · htmldoswindows

https://www.exploit-db.com/exploits/6386

View Code ZIP pw:eip

The provided HTML file contains an excessively long and repetitive image source URL, which appears to be an attempt to exploit a potential buffer overflow or DoS vulnerability in a web browser or server. However, the lack of clear exploit mechanics or payload suggests it may be a stub or a poorly constructed PoC.

Classification

Suspicious 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Theoretical

Target: Unknown (likely a web browser or server)

No auth needed

Prerequisites: A vulnerable web browser or server that mishandles excessively long URLs

MITRE ATT&CK