Integer underflow vulnerability in Google Chrome via crafted data (deb)ID: oval:org.secpod.oval:def:32951 | Date: (C)2016-02-16 (M)2022-06-24 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome before 48.0.2564.109 and is prone to an integer underflow vulnerability. The flaw is present in the application, which fails to handle crafted data with brotli compression. Successful exploitation allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact.