There’s a bug in Google Chrome search engine that allows to crash the chrome browser on demand by typing a small piece of code in the page’s URL
Actually this bug was discovered by Andris Atteka and was reported to the Google Chromium team. According to Atteka, by entering this piece of code “http://anywebsitename.com/%%30%30” in page’s URL will immediately crash the user’s browser.
The main code is “%%30%30”, you need to add this code at the end of page URL and enter it, and it will give you the same result.
Here’s the technical explanation on Andris report from Chromium team “It seems to be crashing in some very old code. In the Debug build, it’s hitting a DCHECK on an invalid URL in GURL, deep in some History code. Given that it’s hitting a CHECK in the Release build, I don’t think this is actually a security bug, but I’m going to leave it as such.”
This bug seems to be affected on recent versions of Google Chrome (45) running on Windows, and will be fixed in upcoming versions.
This bug is harmless, but still it can be used to cause local DoS (Denial-of-Service) attacks, since this bug was a local DoS issue, Mr. Andris Atteka was not paid for any bug bounty programs
3 comments
Comments are closed.
Add Comment