5

CVE-2008-6996

Exploit

EPSS 15.09%
Published 19.08.2009 05:24:52
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Google Chrome BETA (0.2.149.27) does not prompt the user before saving an executable file, which makes it easier for remote attackers or malware to cause a denial of service (disk consumption) or exploit other vulnerabilities via a URL that references an executable file, possibly related to the "ask where to save each file before downloading" setting.

Affected products Warnungen 0 Metrics 2 CWE 0 References 16

Data is provided by the National Vulnerability Database (NVD)

Google ≫ Chrome Version0.2.149.27

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	15.09%	0.94

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

http://codereview.chromium.org/472/diff/1/2

Exploit

http://src.chromium.org/viewvc/chrome?view=rev&revision=1793

http://www.osvdb.org/48261

http://www.securityfocus.com/archive/1/495942/100/0/threaded

http://www.securityfocus.com/archive/1/495951/100/100/threaded

http://www.securityfocus.com/archive/1/495954/100/100/threaded

http://www.securityfocus.com/archive/1/495959/100/100/threaded

http://www.securityfocus.com/archive/1/495987/100/0/threaded

http://www.securityfocus.com/archive/1/496048/100/100/threaded

http://www.securityfocus.com/archive/1/496049

http://www.securityfocus.com/bid/31000

https://exchange.xforce.ibmcloud.com/vulnerabilities/44904

https://www.exploit-db.com/exploits/6355

https://nvd.nist.gov/vuln/detail/CVE-2008-6996

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-6996

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-6996

EUVD