1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Chrome CVE-2019-5790 Activity

Web Attack: Chrome CVE-2019-5790 Activity

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects the attempt to execute arbitrary code in the context of the browser, obtain sensitive information, bypass security restrictions and perform unauthorized actions, or cause denial-of-service conditions. Information obtained may aid in further attacks.

Additional Information

Google Chrome is a Web browser that is available for multiple platforms.

Google Chrome is prone to the following security vulnerabilities:

1. A use-after-free vulnerability that exists in 'Canvas'. [CVE-2019-5787]

2. A use-after-free vulnerability that exists in 'FileAPI'. [CVE-2019-5788]

3. A use-after-free vulnerability that exists in 'WebMiDi'. [CVE-2019-5789]

4. A heap-based buffer overflow vulnerability that occurs in 'V8'. [CVE-2019-5790]

5. A security vulnerability that occurs due to type confusion error in 'V8'. [CVE-2019-5791]

6. Multiple integer overflow vulnerabilities that exist in 'PDFium'. [CVE-2019-5792], [CVE-2019-5795]

7. A security vulnerability that exists due to excessive permissions for private API in Extensions. [CVE-2019-5793]

8. Multiple URL spoofing vulnerabilities that affect the extensions UI. [CVE-2019-5794], [CVE-2019-5802]

9. An unspecified buffer-overflow vulnerability that occurs due to a race condition error. Specifically, this issue exists in 'Extensions'. [CVE-2019-5796]

10. An unspecified buffer-overflow vulnerability that occurs due to a race condition error. Specifically, this issue exists in 'DOMStorage'. [CVE-2019-5797]

11. A security vulnerability exists due to an out-of-bounds read error. Specifically, this issue affects the 'Skia'. [CVE-2019-5798]

12. Multiple security vulnerabilities that exist due to CSP bypass in blob URL. [CVE-2019-5799], [CVE-2019-5800]

13. A security vulnerability that exists due to CSP bypass with Javascript URLs. [CVE-2019-5803]

NOTE: CVE-2019-5804 does not affect Red Hat Enterprise Linux 6.

Attackers can exploit these issues to execute arbitrary code in the context of the browser, obtain sensitive information, bypass security restrictions and perform unauthorized actions, or cause denial-of-service conditions. Information obtained may aid in further attacks.

Affected

  • Versions prior to Chrome 73.0.3683.75 are vulnerable.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube