Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2015-8664Use After Free in Google Chrome

CWE-416Use After Free13 documents7 sources
Severity
9.8CRITICALNVD
NVD8.8OSV9.3
EPSS
8.0%
top 7.89%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Google Chrome
Timeline
PublishedDec 24
Latest updateMay 17

Description

Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

NVDgoogle/chrome47.0.2526.80

🔴Vulnerability Details

5
GHSA
GHSA-gr4r-9v54-jxjh: The MIDI subsystem in Google Chrome before 472022-05-17
GHSA
GHSA-4wq5-7mhx-9xh5: Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor2022-05-17
OSV
oxide-qt vulnerabilities2016-01-11
OSV
CVE-2015-6792: The MIDI subsystem in Google Chrome before 472015-12-24
OSV
CVE-2015-8664: Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor2015-12-23

💥Exploits & PoCs

1
Exploit-DB
Google Chrome - Renderer Process to Browser Process Privilege Escalation2015-12-18

📋Vendor Advisories

3
Ubuntu
Oxide vulnerabilities2016-01-11
Red Hat
chromium-browser: Use-After-free in MidiHost2015-12-23
Red Hat
chromium-browser: Fixes from internal audits and fuzzing2015-12-15

💬Community

2
Bugzilla
CVE-2015-8664 chromium-browser: Use-After-free in MidiHost2015-12-30
Bugzilla
CVE-2015-6792 chromium-browser: Fixes from internal audits and fuzzing2015-12-16