Rule Category

BROWSER-CHROME -- Snort has detected suspicious traffic known to exploit vulnerabilities present in the Chrome browser. These rules are separate from the "browser-webkit" category; while it uses the Webkit rendering engine, there's a lot of other features to create a secondary Chrome category.

Alert Message

BROWSER-CHROME V8 JavaScript engine Out-of-Memory denial of service attempt

Rule Explanation

This event is generated when a JavaScript file that could cause an out-of-memory denial of service in Google Chrome's V8 JavaScript engine is detected. Impact: Attempted Denial of Service Details: A specially crafted JavaScript file can trigger an out-of-memory error in Google Chrome's V8 JavaScript Engine. This out-of-memory error causes the tab in Chrome to crash, leading to a denial of service. Ease of Attack:

What To Look For

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

MITRE ATT&CK Framework

Tactic:

Technique:

For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org

Additional Links

Rule Vulnerability

CVE Additional Information