vendor:
N/A
by:
Project Zero
8,8
CVSS
HIGH
Out-of-Bounds Read
125
CWE
Product Name: N/A
Affected Version From: All
Affected Version To: All
Patch Exists: YES
Related CWE: CVE-2018-17463
CPE: N/A
Metasploit:
https://www.rapid7.com/db/vulnerabilities/google-chrome-cve-2018-17463/, https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2018-17463/, https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2018-17463/, https://www.rapid7.com/db/vulnerabilities/redhat_linux-cve-2018-17463/, https://www.rapid7.com/db/vulnerabilities/debian-cve-2018-17463/, https://www.rapid7.com/db/vulnerabilities/suse-cve-2018-17463/
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: All
2018
Out-of-Bounds Read in Array.prototype.splice()
The Array.prototype.splice() method in JavaScript can be used to trigger an out-of-bounds read. This vulnerability can be exploited by creating an array with a large number of elements and then calling the splice() method on it. The vulnerability can be triggered by using a specially crafted JavaScript code that will cause the array to be allocated in a memory region that is not properly initialized. This can lead to an out-of-bounds read, which can be used to leak sensitive information.
Mitigation:
The best way to mitigate this vulnerability is to ensure that all JavaScript code is properly validated and sanitized before being executed. Additionally, developers should ensure that all arrays are properly initialized before being used.
