CVE-2008-6994

Stack-based buffer overflow in the SaveAs feature (SaveFileAsWithFilter function) in win_util.cc in Google Chrome 0.2.149.27 allows user-assisted remote attackers to execute arbitrary code via a web page with a long TITLE element, which triggers the overflow when the user saves the page and a long filename is generated. NOTE: it might be possible to exploit this issue via an HTTP response that includes a long filename in a Content-Disposition header.
Configurations

Configuration 1

cpe:2.3:a:google:chrome:0.2.149.27:*:*:*:*:*:*:*

Information

Published : 2009-08-19 05:24

Updated : 2018-10-11 08:57


NVD link : CVE-2008-6994

Mitre link : CVE-2008-6994

Products Affected
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer