HTTP: Google Chrome CVE-2016-5198 Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Google Chrome. A successful attack can lead to arbitrary code execution.

Extended Description

V8 in Google Chrome prior to 54.0.2840.90 for Linux, and 54.0.2840.85 for Android, and 54.0.2840.87 for Windows and Mac included incorrect optimisation assumptions, which allowed a remote attacker to perform arbitrary read/write operations, leading to code execution, via a crafted HTML page.

Affected Products

Redhat enterprise_linux_workstation

References

CVE: CVE-2016-5198

Short Name
HTTP:STC:CHROME:CVE-2016-5198
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2016-5198 Chrome Code Execution Google Remote
Release Date
05/18/2017
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3718
False Positive
Unknown
Vendors

Redhat

CVSS Score

6.8

Found a potential security threat?