HTTP: Google Chrome CVE-2016-5200 Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Google Chrome. A successful attack can lead to arbitrary code execution.

Extended Description

V8 in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for Android incorrectly applied type rules, which allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Affected Products

Google chrome

References

CVE: CVE-2016-5200

Short Name
HTTP:STC:CHROME:CVE-2016-5200
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2016-5200 Chrome Code Execution Google Remote
Release Date
05/18/2017
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3375
False Positive
Unknown
Vendors

Google

CVSS Score

6.8

Found a potential security threat?