0day.today - Biggest Exploit Database in the World.

Select your language:

Things you should know about 0day.today:

We use one main domain: http://0day.today
Most of the materials is completely FREE
If you want to purchase the exploit / get V.I.P. access or pay for any other service,
you need to buy or earn GOLD

We accept currencies: [contact admin to find more]

We don't want you to use our site as a tool for hacking purposes, so any kind of action that could affect illegaly other users or websites that you don't have right to access will be banned and your account including your data will be destroyed.

Administration of this site uses the official contacts. Beware of impostors!

We DO NOT use Telegram or any messengers / social networks!
Please, beware of scammers!

I am registered user of 0day.today. I don't want to see this screen in future.

What to do first?

Read the [ agreement ]
Read the [ Submit ] rules
Visit the [ faq ] page
[ Register ] profile
Get [ GOLD ]
If you want to [ sell ]
If you want to [ buy ]
If you lost [ Account ]
Any questions [ admin@0day.today ]

Main links

You can contact us by

Mail:

mr.inj3ct0r@gmail.com

Facebook:

Inj3ct0rs

Twitter:

Inj3ct0r

Telegram:

We DO NOT use Telegram or any messengers / social networks!

[ authorization ] [ registration ] [ restore account ]

You can contact us by:

Mail:

mr.inj3ct0r@gmail.com

Facebook:

Inj3ct0rs

Twitter:

Inj3ct0r

Telegram:

We DO NOT use Telegram or any messengers / social networks!

Google Chrome Browser 0.2.149.27 (SaveAs) Remote BOF Exploit

Author

SVRT

Risk

[

Security Risk Unsored

]

0day-ID

0day-ID-9255

Category

remote exploits

Date add

04-09-2008

Platform

unsorted

============================================================
Google Chrome Browser 0.2.149.27 (SaveAs) Remote BOF Exploit
============================================================




PoC Code is in Attach file because this file is saved in 'Unicode' type for exploit.

Here is Description for this Vuln :
Â·          Type of Issue : Buffer Overflow. 
Â·          Affected Software : Google Chrome 0.2.149.27.      
Â·          Exploitation Environment : Google Chrome (Language: Vietnamese) on Windows XP SP2.
Â·          Impact: Remote code execution.
Â·          Rating : Critical .
Â·          Description :
The vulnerability is caused due to a boundary error when handling the â€œSaveAsâ€ function. On saving 
a malicious page with an overly long title (<title> tag in HTML), the program causes a stack-based overflow and makes 
it possible for attackers to execute arbitrary code on usersâ€™ systems.
Â·          How an attacker could exploit the issue :
To exploit the Vulnerability, a hacker might construct a specially crafted Web page, which contains malicious code. 
He then tricks users into visiting his Website and convinces them to save this Page. Right after that, the code would 
be executed, giving him the privilege to make use of the affected system.
Â·          Discoverer : Le Duc Anh - SVRT - Bkis
Â·          About SVRT :
SVRT, which is short for Security Vulnerability Research Team, is one of Bkis researching groups. SVRT specializes 
in the detection, alert and announcement of security vulnerabilities in software, operating systems, network protocols 
and embedded systemsâ€¦


back: http://inj3ct0r.com/sploits/1013.zip



#  0day.today [2024-11-15]  #

We DO NOT use Telegram or any messengers / social networks!

Please, beware of scammers!

Google Chrome Browser 0.2.149.27 (SaveAs) Remote BOF Exploit

Report Error

Report Error