CVE-2008-6998

Google Chrome < 0.2.149.29 - Stack-Based Buffer Overflow via Hover Over Long Path Link

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-6998. PoCs published by Shinnok.

AI-analyzed exploit summary This exploit demonstrates a denial-of-service vulnerability in Google Chrome 0.2.149.27 by using an excessively long URL path with repeated '/crash/' segments, causing the browser to crash when hovered or clicked.

Description

Stack-based buffer overflow in chrome/common/gfx/url_elider.cc in Google Chrome 0.2.149.27 and other versions before 0.2.149.29 might allow user-assisted remote attackers to execute arbitrary code via a link target (href attribute) with a large number of path elements, which triggers the overflow when the status bar is updated after the user hovers over the link.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Shinnok · htmldoswindows

https://www.exploit-db.com/exploits/6372

View Code ZIP pw:eip

This exploit demonstrates a denial-of-service vulnerability in Google Chrome 0.2.149.27 by using an excessively long URL path with repeated '/crash/' segments, causing the browser to crash when hovered or clicked.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Google Chrome 0.2.149.27

No auth needed

Prerequisites: Victim must visit the malicious webpage or interact with the crafted link

MITRE ATT&CK