CVE-2009-2974 Information

Description

Google Chrome 1.0.154.65 1.0.154.48 and earlier allows remote attackers to (1) cause a denial of service (application hang) via vectors involving a chromehtml: URI value for the document.location property or (2) cause a denial of service (application hang and CPU consumption) via vectors involving a series of function calls that set a chromehtml: URI value for the document.location property.

Reference

http://archives.neohapsis.com/archives/bugtraq/2009-08/0217.html http://archives.neohapsis.com/archives/bugtraq/2009-08/0236.html http://websecurity.com.ua/3435/