-
Notifications
You must be signed in to change notification settings - Fork 254
CVE 2015 6765
Aidan Sawyer edited this page Dec 17, 2016
·
2 revisions
||| |:----|:------|:------| |CVE_ID| CVE-2015-6765 | |version_broken|| |version_found|46.0.2490.86| |version_fixed|47.0.2526.73| |file/s|content/browser/appcache/appcache_update_job.cc| |subsystem|AppCache| |code review ID|1463463003|
"allows remote attackers to execute arbitrary code or cause a denial of service by leveraging the mishandling of AppCache update jobs."
an error in storing entries and fetchers allows attacker to overload the pending list of entries and crash the browser, while running fetcher allows for UaF.
| type/s | DoS, Arbitrary Code Execution |
| coding mistakes | resource exhaustion, lack of checks |
| CWE-ID | None |
| Exploits | No Known |
| CVSS | |
|---|---|
| Overall | 10.0 |
| Confidentiality | Complete |
| Integrity | Complete |
| Availability | Complete |
| Access Complexity | Low |
| Authentication | None |
| Gained Access | None |
| commit_id | |
| commit_date | |
| user_username | |
| user_name | |
| user_role |
| issue_id | 558589 |
| date | 2015-11-19 |
| user_username | [email protected] |
| user_name | unknown |
| user_role | likley unaffiliated, 3rd issue reported at time, 2 reported since, 5 total |
| metasploit | None |
| bounty | 10,000 |
| commit_id | 57f7a2257395a31c4716bd6a1c2d6c9c09938c7b |
| commit_date | 2015-11-24 |
| user_username | [email protected] |
| user_name | Michael Nordman |
| user_role | webkit committer, google employee |
| method | add checks, conditionals, fix storing error |
| files changed | 2 |
| lines of code | 10 |
| bounty | [employee] |