Denial of Service Vulnerability in Google Chrome Due to Memory Corruption
CVE-2016-5129

8.8HIGH

Key Information:

Vendor
Google
Status
Chrome
V8
Vendor
CVE Published:
23 July 2016

Summary

The vulnerability arises from the improper processing of left-trimmed objects in Google V8, which is utilized in Google Chrome. It allows remote attackers to execute crafted JavaScript that could lead to a denial of service through memory corruption. This issue emphasizes the need for users to ensure that their browser and its underlying components are updated to the latest versions to mitigate such risks.

References

http://lists.opensuse.org/opensuse-security-announce/2016...
vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016...
vendor-advisoryx_refsource_SUSE
https://source.android.com/security/bulletin/2017-04-01
x_refsource_CONFIRM

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.