BROWSER-CHROME -- Snort has detected suspicious traffic known to exploit vulnerabilities present in the Chrome browser. These rules are separate from the "browser-webkit" category; while it uses the Webkit rendering engine, there's a lot of other features to create a secondary Chrome category.
BROWSER-CHROME Google V8 engine type confusion attempt
This rule alerts when an attacker attempts to exploit CVE-2018-6064. Impact: Attempted User Privilege Gain Details: An attacker can abuse a type confusion vulnerability in Google Chrome's V8 engine that may lead to out of bounds memory access or write. Attackers who abuse this vulnerability may be able to execute code remotely on a victim machine. Ease of Attack:
No public information
No known false positives
Cisco Talos Intelligence Group
Tactic:
Technique:
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org
CVE-2018-6064Type Confusion in the implementation of __defineGetter__ in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
|