HTTP: Google Chrome CVE-2016-1669 Denial Of Service

This signature detects attempts to exploit a known vulnerability against Google Chrome. A successful attack can lead to denial of service condition.

Extended Description

The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.

Affected Products

Nodejs node.js

References

CVE: CVE-2016-1669

Short Name
HTTP:STC:CHROME:CVE-2016-1669
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2016-1669 Chrome Denial Google Of Service
Release Date
05/11/2017
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3590
False Positive
Unknown
Vendors

Opensuse

Nodejs

Google

Debian

Canonical

CVSS Score

9.3

Found a potential security threat?