[2008-09-05] Google Chrome Browser 0.2.149.27 Remote DoS

Description

Google's chrome browser suffers from a remote denial of service vulnerability when trying to follow a href link of the following form:

<a href="/crash/crash/crash/.../crash/crash">crashme</a>
Please note that the dots stand for alot of "/crash/" subdirectories. When hovering the mouse above the link or trying to click on it(if you can :P) it will result in a immediate crash with all opened tabs.

POC/Exploit code [.html]


crashme

Other references

Milw0rm : http://www.milw0rm.com/exploits/6372

Securityfocus : http://www.securityfocus.com/bid/31034

Shinnok @127.0.0.1

When in doubt, use brute force

[2008-09-05] Google Chrome Browser 0.2.149.27 Remote DoS

Description

POC/Exploit code [.html]

Other references