It seems that there are some kind of security breach on the new beta browser released by google according to redmond developer news.However , i presume its only a matter of time before google fixes it but chrome users shud atleast beware for the moment till a patch is released.
First, Rishi Narang, who is part of the EvilFingers security portal, identified a denial-of-service vulnerability that has crashed the Chrome browser when tabs are open during an Internet session.
A second proof-of-concept vulnerability also emerged on Wednesday that allows a malformed URL to crash or “carpet bomb” the Chrome browser. This exploit was discovered when independent researcher Aviv Raff figured out that he could combine two vulnerabilities — a flaw in Apple Safari (WebKit) and a Java bug discussed at this year’s Black Hat conference. His exploit tricks users into launching executables directly from the new browser.
Google’s Chrome browser is partly based on open source software components used in Mozilla’s Firefox and Apple’s WebKit. The malformed URL vulnerability is based on the WebKit problem that similarly affected Apple’s Safari browser. Apple has since patched Safari, but Google is using a version of the WebKit that is vulnerable to this kind of attack, experts say
read More at:
http://reddevnews.com/news/print.aspx?editorialsid=10170
March 3, 2009 at 10:41 am |
Hello webmaster
I would like to share with you a link to your site
write me here preonrelt@mail.ru