5

CVE-2008-6996

Exploit

EPSS 15.09%
Veröffentlicht 19.08.2009 05:24:52
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Google Chrome BETA (0.2.149.27) does not prompt the user before saving an executable file, which makes it easier for remote attackers or malware to cause a denial of service (disk consumption) or exploit other vulnerabilities via a URL that references an executable file, possibly related to the "ask where to save each file before downloading" setting.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 16

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Google ≫ Chrome Version0.2.149.27

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	15.09%	0.94

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

http://codereview.chromium.org/472/diff/1/2

Exploit

http://src.chromium.org/viewvc/chrome?view=rev&revision=1793

http://www.osvdb.org/48261

http://www.securityfocus.com/archive/1/495942/100/0/threaded

http://www.securityfocus.com/archive/1/495951/100/100/threaded

http://www.securityfocus.com/archive/1/495954/100/100/threaded

http://www.securityfocus.com/archive/1/495959/100/100/threaded

http://www.securityfocus.com/archive/1/495987/100/0/threaded

http://www.securityfocus.com/archive/1/496048/100/100/threaded

http://www.securityfocus.com/archive/1/496049

http://www.securityfocus.com/bid/31000

https://exchange.xforce.ibmcloud.com/vulnerabilities/44904

https://www.exploit-db.com/exploits/6355

https://nvd.nist.gov/vuln/detail/CVE-2008-6996

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-6996

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-6996

EUVD