This PoC demonstrates a denial of service (DoS) vulnerability in GNOME Web (Epiphany) through 3.28.2.1. The exploit triggers a segmentation fault by using JavaScript to open a window with a NULL URL, leading to an application crash.
Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:GNOME Web (Epiphany) through 3.28.2.1
No auth needed
Prerequisites:A target system running GNOME Web (Epiphany) through 3.28.2.1 · Ability to execute JavaScript in the context of the browser