Intrusion PreventionGoogle.Chrome.FileReader.Remote.Code.Execution
Description
This indicates an attack attempt to exploit a Remote Command Execution vulnerability in Google Chrome for Windows.
The vulnerability is due to an error when the vulnerable software handles a maliciously Javascript. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application.
Affected Products
Google Chrome for Windows before patch 72.0.3626.121
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop.html
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2021-05-03 | 18.071 | Sig Added |
| 2019-06-28 | 14.641 | Default_action:pass:drop |
| 2019-05-08 | 14.609 | Sig Added |
| 2019-04-08 | 14.588 | Sig Added |
| 2019-04-02 | 14.584 | Name:Google. Chrome. FileReader. UAF. Remote. Code. Execution:Google. Chrome. FileReader. Remote. Code. Execution |
| 2019-03-27 | 14.581 |
| ID | 47676 |
| Created | Mar 28, 2019 |
| Updated | May 12, 2021 |
| Risk |
|
| CVE ID | CVE-2019-5786 |
| Known Exploited | Yes |
| Exploit Prediction Score | 97.22% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |