A specially crafted 16 character long URL string crashes your google chrome.The need is not even to click on these links but just to mouse over on them and then your Google Chrome will crash out. 😀

Chrome crashed

This flaw was found by a security researched Andris Atteka. The URL strings are :
WARNING : Do not click or even mouseover on these links until and unless you want your chrome browser crashed.
http://a/%%30%30
file:///%%300
http://biome3d.com/%%30%30
These URL strings have been tested on Mac and Windows.
Andris in his blog says:
    “Recently I reported a crash bug in Google Chrome (issue #533361). This issue reminded me of the recent Skype vulnerability – both occur with simple URL strings. So how can you crash Google Chrome? By adding a NULL char in the URL string:
http://biome3d.com/%%30%30
Unfortunately no reward was awarded as this was deemed to be only a DOS vulnerability. Anyway, making secure software is much harder than finding issues in it. Thanks Google.”
If you like this post please take moment to share it, because sharing is caring. :)

Post a Comment

Post a Comment

Previous Post Next Post