Exploit for #VU17898 Use-after-free in Google Chrome

Exploit for #VU17898 Use-after-free in Google Chrome

Published: 2020-03-18 | Updated: 2021-06-17

Vulnerability identifier: #VU17898

Vulnerability risk: Critical

CVSSv3.1: 9.2 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:H/RL:O/RC:C]

CVE-ID: CVE-2019-5786

CWE-ID: CWE-416

Exploitation vector: Network

Exploits in database: 4

June 17, 2021
- Google Chrome 72.0.3626.119 - 'FileReader' Use-After-Free (Metasploit) [Exploit-DB]
March 18, 2020
- CVE-2019-5786 (FileReader Exploit) [Github]
- CVE-2019-0808 (Win32k Exploit by Grant Willcox) [Github]
- Chrome 72.0.3626.119 FileReader UaF exploit for Windows 7 x86 [Metasploit]

Impact: Code execution

Vulnerable software:
Google Chrome
Client/Desktop applications / Web browsers

Vendor: Google