CVE-2018-17463

Related Files

Google Chrome 67 / 68 / 69 Object.create Type Confusion

Posted Mar 5, 2020

Authored by saelo, timwr | Site metasploit.com

This Metasploit modules exploits a type confusion in Google Chrome's JIT compiler. The Object.create operation can be used to cause a type confusion between a PropertyArray and a NameDictionary. The payload is executed within the rwx region of the sandboxed renderer process, so the browser must be run with the --no-sandbox option for the payload to work.

tags | exploit

advisories | CVE-2018-17463

SHA-256 | 5a38c9abffbaf08c049cb1b58519cd4edf1737251883302e32656d4b4f6eadc6

Download | Favorite | View

Gentoo Linux Security Advisory 201811-10

Posted Nov 23, 2018

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-10 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which allows remote attackers to execute arbitrary code. Versions less than 70.0.3538.67 are affected.

tags | advisory, remote, arbitrary, vulnerability

systems | linux, gentoo

advisories | CVE-2018-16065, CVE-2018-16066, CVE-2018-16067, CVE-2018-16068, CVE-2018-16069, CVE-2018-16070, CVE-2018-16071, CVE-2018-16072, CVE-2018-16073, CVE-2018-16074, CVE-2018-16075, CVE-2018-16076, CVE-2018-16077, CVE-2018-16078, CVE-2018-16079, CVE-2018-16080, CVE-2018-16081, CVE-2018-16082, CVE-2018-16083, CVE-2018-16084, CVE-2018-16085, CVE-2018-16086, CVE-2018-16087, CVE-2018-16088, CVE-2018-17462, CVE-2018-17463

SHA-256 | 34e4453a5a067821b9371405bfb3acde3b985fc5d76924eb9eeef98b76a6647a

Download | Favorite | View

Debian Security Advisory 4330-1

Posted Nov 2, 2018

Authored by Debian | Site debian.org

Debian Linux Security Advisory 4330-1 - Several vulnerabilities have been discovered in the chromium web browser.

tags | advisory, web, vulnerability

systems | linux, debian

advisories | CVE-2018-17462, CVE-2018-17463, CVE-2018-17464, CVE-2018-17465, CVE-2018-17466, CVE-2018-17467, CVE-2018-17468, CVE-2018-17469, CVE-2018-17470, CVE-2018-17471, CVE-2018-17473, CVE-2018-17474, CVE-2018-17475, CVE-2018-17476, CVE-2018-17477, CVE-2018-5179

SHA-256 | 3ac250c0340e7fb6addf232c7ac0a47f620f98738020bfcfc00e1b0bce9b87ff

Download | Favorite | View

Red Hat Security Advisory 2018-3004-01

Posted Oct 25, 2018

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3004-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 70.0.3538.67. Issues addressed include buffer overflow and code execution vulnerabilities.

tags | advisory, web, overflow, vulnerability, code execution

systems | linux, redhat

advisories | CVE-2018-16435, CVE-2018-17462, CVE-2018-17463, CVE-2018-17464, CVE-2018-17465, CVE-2018-17466, CVE-2018-17467, CVE-2018-17468, CVE-2018-17469, CVE-2018-17470, CVE-2018-17471, CVE-2018-17473, CVE-2018-17474, CVE-2018-17475, CVE-2018-17476, CVE-2018-17477, CVE-2018-5179

SHA-256 | a62da74222a6deb430950a3191ab187b2c3fa28cab9bc58b56e098e0ed3bb36c

Download | Favorite | View