CVE-2018-6129

MEDIUM

Google Chrome <67.0.3396.62 - Memory Corruption

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-6129. PoCs published by Google Security Research.

AI-analyzed exploit summary The exploit leverages a missing bounds check in VP9 frame processing in WebRTC, leading to memory corruption via an out-of-bounds array access. The PoC demonstrates a crash in Chrome by sending a malformed VP9 frame with a temporal_idx value exceeding the array bounds.

Description

Out of bounds array access in WebRTC in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdosmultiple

https://www.exploit-db.com/exploits/44863

View Code ZIP pw:eip

The exploit leverages a missing bounds check in VP9 frame processing in WebRTC, leading to memory corruption via an out-of-bounds array access. The PoC demonstrates a crash in Chrome by sending a malformed VP9 frame with a temporal_idx value exceeding the array bounds.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: WebRTC (Chrome and other browsers supporting VP9)

No auth needed

Prerequisites: WebRTC with VP9 support · User interaction to trigger the malformed frame

MITRE ATT&CK

T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Release Notes, Vendor Advisory x_refsource_misc

https://chromereleases.googleblog.com/2018/05/stable-channel-update-for-desktop_58.html

Issue Tracking x_refsource_misc

https://crbug.com/838672

Scores

CVSS v3 6.5

EPSS 0.0275

EPSS Percentile 84.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Details

CWE

CWE-125

Status published

Products (1)

google/chrome < 67.0.3396.62

Published Jun 27, 2019

Tracked Since Feb 18, 2026