CVE-2022-0311 Task Manager in Chrome prior to 97.0.4692.99 had a heap buffer overflow that could be exploited via specific user interaction.

Google engineers demonstrated that Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. Task Manager in Google Chrome prior to 97.0.4692.99, when entered into a specific user interaction mode, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. A user interaction mode bypassed a Content Security Policy (CSP) block in Task Manager in Google Chrome prior to 97.0.4692.99, allowing a remote attacker to potentially perform heap manipulation via a crafted HTML page. An integer overflow in Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. A user interaction mode bypassed a Content Security Policy (CSP) block in Task Manager in Google Chrome prior to 97.0.4692.99, allowing a remote attacker to potentially perform heap manipulation via a crafted HTML page. An integer overflow in Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. A user interaction mode bypassed a Content Security Policy (CSP) block in Task Manager in Google Chrome prior to 97.0.4692.99, allowing a remote attacker to potentially perform heap manipulation via a crafted HTML page. A heap buffer overflow in Task Manager

task manager

Google engineers demonstrated that Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. Task Manager in Google Chrome prior to 97.0.4692.99, when entered into a specific user interaction mode, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. A user interaction mode bypassed a Content Security Policy (CSP) block in Task Manager in Google Chrome prior to 97.0.4692.99, allowing a remote attacker to potentially perform heap manipulation via a crafted HTML page. An integer overflow in Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. A user interaction mode bypassed a Content Security Policy (CSP) block in Task Manager in Google Chrome prior to 97.0.4692.99, allowing a remote attacker to potentially perform heap manipulation via a crafted HTML page.

Task Manager in Google Chrome prior to 97.0.4692.99

In Task Manager in Google Chrome prior to 97.0.4692.99, the page does not verify whether the Content Security Policy (CSP) is enabled before opening a WebView for interacting with content from an HTML page. The WebView allows a remote attacker to potentially exploit heap corruption via a crafted HTML page and perform heap manipulation via a crafted HTML page.

Timeline

Published on: 02/12/2022 02:15:00 UTC
Last modified on: 02/22/2022 22:06:00 UTC

References

• https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html
• https://crbug.com/1283807
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-0311