CVE-2008-4340 – Google Chrome - Carriage Return Null Object Memory Exhaustion
https://notcve.org/view.php?id=CVE-2008-4340
Google Chrome 0.2.149.29 and 0.2.149.30 allows remote attackers to cause a denial of service (memory consumption) via an HTML document containing a carriage return ("\r\n\r\n") argument to the window.open function. Google Chrome 0.2.149.29 y 0.2.149.30, permite a atacantes remotos provocar una denegación de servicio (consumo de memoria) a través de un documento HTML que contiene un argumento de retorno de carro en la función window.open. • https://www.exploit-db.com/exploits/6554 http://secniche.org/gcrds.html http://securityreason.com/securityalert/4339 http://www.securityfocus.com/archive/1/496688/100/0/threaded http://www.securityfocus.com/bid/31375 https://exchange.xforce.ibmcloud.com/vulnerabilities/45403 • CWE-20: Improper Input Validation •
CVE-2004-1831
https://notcve.org/view.php?id=CVE-2004-1831
Buffer overflow in Chrome 1.2.0.0 and earlier allows remote attackers to cause a denial of service (crash) via a packet with a large length value, which leads to a null dereference or out-of-bounds read. • http://aluigi.altervista.org/adv/chrome-boom-adv.txt http://marc.info/?l=bugtraq&m=107964719614657&w=2 http://www.securityfocus.com/bid/9898 https://exchange.xforce.ibmcloud.com/vulnerabilities/15535 •