Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The base64DecodeInternal function in wtf/text/Base64.cpp in Blink, as used in Google Chrome before 34.0.1847.116, does not properly handle string data composed exclusively of whitespace characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via a window.atob method call.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Chrome Blink 输入验证漏洞
Vulnerability Description
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。Blink是美国谷歌(Google)公司和挪威欧朋(Opera Software)公司共同开发的一套浏览器排版引擎(渲染引擎)。 Google Chrome 34.0.1847.115及之前版本使用的Blink的wtf/text/Base64.cpp文件中的‘base64DecodeInternal’函数存在安全漏洞,该漏洞源于程序没有正确处理完全由空字符组成的字符串数据。远程攻击者可通过调用‘window.atob’方法利用
CVSS Information
N/A
Vulnerability Type
N/A