CVE-2011-2841

Google Chrome < 14.0.835.163 - Denial of Service via PDF Garbage Collection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-2841. PoCs published by Mario Gomes.

AI-analyzed exploit summary This is a security advisory detailing a memory corruption vulnerability in Google Chrome's PDF handling, which could lead to code execution within the sandbox. The advisory includes a stack trace, proof-of-concept steps, and references but does not contain actual exploit code.

Description

Google Chrome before 14.0.835.163 does not properly perform garbage collection during the processing of PDF documents, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Mario Gomes · textdoswindows
https://www.exploit-db.com/exploits/17929

This is a security advisory detailing a memory corruption vulnerability in Google Chrome's PDF handling, which could lead to code execution within the sandbox. The advisory includes a stack trace, proof-of-concept steps, and references but does not contain actual exploit code.

Classification
Writeup 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Google Chrome < 14.0.835.163
No auth needed
Prerequisites: A target system running Google Chrome < 14.0.835.163 · A crafted HTML file with multiple IFRAME tags pointing to a PDF file
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14019
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/69868
Release Notes, Vendor Advisory x_refsource_confirm
http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/75541
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/8411
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/17929/

Scores

EPSS 0.0369
EPSS Percentile 88.4%

Details

CWE
CWE-20
Status published
Products (1)
google/chrome < 14.0.835.163
Published Sep 19, 2011
Tracked Since Feb 18, 2026