CVE-2013-6627

Google Chrome < 31.0.1650.48 - Denial of Service via HTTP Informational Status Code Processing

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-6627. PoCs published by Skylined.

AI-analyzed exploit summary This exploit targets an out-of-bounds read vulnerability in Google Chrome's HTTP response parsing. It leverages a crafted HTTP 1xx response to leak memory from the main process, demonstrated via a Python-based server that serves a malicious webpage.

Description

net/http/http_stream_parser.cc in Google Chrome before 31.0.1650.48 does not properly process HTTP Informational (aka 1xx) status codes, which allows remote web servers to cause a denial of service (out-of-bounds read) via a crafted response.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Skylined · pythondosmultiple

https://www.exploit-db.com/exploits/40944

View Code ZIP pw:eip

This exploit targets an out-of-bounds read vulnerability in Google Chrome's HTTP response parsing. It leverages a crafted HTTP 1xx response to leak memory from the main process, demonstrated via a Python-based server that serves a malicious webpage.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Google Chrome up to 31.0.1650.48

No auth needed

Prerequisites: Target must visit a malicious webpage

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (13)

Core 13

Core References

Patch x_refsource_confirm

https://src.chromium.org/viewvc/chrome?revision=226539&view=revision

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19113

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.com/files/140209/Chrome-HTTP-1xx-Out-Of-Bounds-Read.html

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/40944/

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html

Issue Tracking x_refsource_confirm

https://code.google.com/p/chromium/issues/detail?id=299892

Mailing List mailing-list x_refsource_fulldisc

http://seclists.org/fulldisclosure/2016/Dec/65

Vendor Advisory x_refsource_confirm

http://googlechromereleases.blogspot.com/2013/11/stable-channel-update.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00025.html

Various Sources x_refsource_misc

http://blog.skylined.nl/20161219001.html

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2013/dsa-2799

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00026.html

Scores

EPSS 0.0534

EPSS Percentile 91.6%

Details

CWE

CWE-119

Status published

Products (44)

google/chrome 31.0.1650.0

google/chrome 31.0.1650.2

google/chrome 31.0.1650.3

google/chrome 31.0.1650.4

google/chrome 31.0.1650.5

google/chrome 31.0.1650.6

google/chrome 31.0.1650.7

google/chrome 31.0.1650.8

google/chrome 31.0.1650.9

google/chrome 31.0.1650.10

... and 34 more

Published Nov 13, 2013

Tracked Since Feb 18, 2026