Your Ad Here

Aditya K Sood from Team Evil Fingers is back with a new memory exhaustion based denial of service attack which can be triggered remotely in Chrome

Based in his research the vulnerability is triggered when Carriage Return(\r\n\r\n) is passed as an argument to window.open() function. This makes Google Chrome generate a large number of windows at the same time resulting in Operating System memory exhaustion.

A PoC is available at evilfingers.com.

Affected Versions
0.2.149.27
0.2.149.29

References
http://www.evilfingers.com/advisory/Google_Chrome_Carriage_Return_Null_Object_Memory_Exhaustion_Remote_Dos.php

Posted by Cyber Trunks

0 comments:

Your Ad Here