Integer underflow in net/base/escape.cc in chrome.dll in Google Chrome 0.2.149.27 allows remote attackers to cause a denial of service (browser crash) via a URI with an invalid handler followed by a "%" (percent) character, which triggers a buffer over-read, as demonstrated using an "about:%" URI.
References
Configurations
History
No history.
Information
Published : 2009-08-19 05:24
Updated : 2024-02-28 11:21
NVD link : CVE-2008-6995
Mitre link : CVE-2008-6995
CVE.ORG link : CVE-2008-6995
JSON object : View
Products Affected
- chrome
CWE
CWE-189
Numeric Errors