Register Members List Social Groups Search Today's Posts Mark Forums Read  
Computer Forums

Member Login

Remember Me? Sign Up! | Forgot Password
 
Slogan
 
Computer Forums > The World Wide Web > Browser & General Internet Questions » Google Chrome Security Vulnerability
Closed Thread
LinkBack Thread Tools Display Modes
 
Old 09-03-2008, 05:48 PM   #1 (permalink)
Osiris's Avatar
 

Join Date: Jan 2005

Location: Kentucky

Posts: 32,078

Osiris is a jewel in the roughOsiris is a jewel in the roughOsiris is a jewel in the rough

Send a message via ICQ to Osiris Send a message via AIM to Osiris Send a message via MSN to Osiris Send a message via Yahoo to Osiris Send a message via Skype™ to Osiris
Default Google Chrome Security Vulnerability
Google Chrome Security Vulnerability

Now this did not take long. Only one day after releasing a first public beta version of Google Chrome researchers at Kaspersky discovered (Thanks Neil for sending the tip) a security vulnerability that combines a security flaw in Webkit, the browser engine used by Google Chrome, with a Java bug. Apple fixed the vulnerability in Safari back in July after two months of doing nothing about it and it will be interesting to see how fast Google will react to the security vulnerability.
The reason why this vulnerability is still working in Google Chrome is because Google has been using an older version of Webkit for their browser’s core. First of all, users without Java on their computers are completely safe. Users with Java and Chrome installed should read on.
The problem is serious but requires the user’s action to be triggered. If the user clicks on a specifically prepared download the file downloads and executes itself automatically without further user input.
Security expert Aviv Raff has setup a demo website that demonstrates the vulnerability in Google Chrome. The demonstration page provides a download button which will download and execute a Java file immediately without further user interaction. This demo only opens a notepad application but serious harm could be done with such an exploit.
__________________
Osiris is offline  
Old 09-03-2008, 07:27 PM   #2 (permalink)
Trotter's Avatar
 

Join Date: Jan 2005

Location: The South

Posts: 19,905

Trotter is a name known to allTrotter is a name known to allTrotter is a name known to allTrotter is a name known to allTrotter is a name known to allTrotter is a name known to all
Default Re: Google Chrome Security Vulnerability
Roflmao!
__________________
R.I.P. Danny L. Trotter , 14 Nov 1945 - 4 Sept 2009




DFI LanParty-UT SLI-D - Windows 7 64-bit - AMD Athlon X2 4200+ w/CNPS9500
4GB RAM(4x1GB) - Razer Lachesis - EVGA GTX 260 Core 216 896MB

>>>> I am looking for donated DDR2 (link) <<<<

< < < < < If I've been helpful, rep me. . . .
Trotter is online now  
Old 09-03-2008, 07:40 PM   #3 (permalink)
vernong1992's Avatar
 

Join Date: Dec 2006

Posts: 19,809

vernong1992 is a jewel in the roughvernong1992 is a jewel in the roughvernong1992 is a jewel in the rough
Default Re: Google Chrome Security Vulnerability
... What the... its only a day... oww for Google.. (so is anybody here using it)
__________________
I do not accept support requests or deleted threads/complaints about Infractions you've received by PM, Profile or IM/Email. Just ask on the forums!


If I help you, or you just like what I said, rep me by clicking the
or under my avatar; it helps me know that my advice actually helped you.


Planned Rig of 2007:

.. But things don't go according to plan! My Actual Rig, 2009:
vernong1992 is offline  
Old 09-03-2008, 08:07 PM   #4 (permalink)
carnageX's Avatar
 

Join Date: Feb 2007

Location: South Dakota

Posts: 6,056

carnageX is just really nicecarnageX is just really nicecarnageX is just really nicecarnageX is just really nice

Send a message via AIM to carnageX Send a message via MSN to carnageX
Default Re: Google Chrome Security Vulnerability
Lol wow...interesting.
Nope, I don't have it yet, Vern. Good thing probably, too lol. I'm gonna wait till a final release, personally.
__________________
Sorry but I do not accept support questions via E-mail, PM, or IM.




3DMark06 Score: 15418 | carnageX | e6750 @ 3.54GHz | GTX 285 @ 648/1242 | Windows 7 Beta 1 64bit


If I help you, or you just like what I said, rep me by clicking the scale under my avatar
carnageX is offline  
Old 09-03-2008, 09:12 PM   #5 (permalink)
Mak213's Avatar
 

Join Date: Sep 2004

Location: C:\Windows\System32

Posts: 25,657

Mak213 is a name known to allMak213 is a name known to allMak213 is a name known to allMak213 is a name known to allMak213 is a name known to allMak213 is a name known to all
Default Re: Google Chrome Security Vulnerability
I was using it. Still will. This was known from the get go. They reported it less than 2 hours after it was released. Kaspersky and them are slow. I read about this yesterday. Still didnt scare me away from using it.
__________________
R.I.P. Danny L. Trotter
14 Nov 1945 - 4 Sept 2009
Images created by CarnageX | Decaptured...Listen! | Visit Baezware!! | You've been Mak'd! | 儿做好
I do not accept support questions via EMail, PM, IM or my Spaces page! .:|:. This is what happens when an unstoppable force meets an immovable object.
Thanks to all the guys on the staff for your support in my time of need. Hefe you are my personal Hero for your contribution.



<<<< If I help you, or you just like what I said, rep me
Mak213 is online now  
Old 09-03-2008, 09:21 PM   #6 (permalink)
vernong1992's Avatar
 

Join Date: Dec 2006

Posts: 19,809

vernong1992 is a jewel in the roughvernong1992 is a jewel in the roughvernong1992 is a jewel in the rough
Default Re: Google Chrome Security Vulnerability
So if anybody's interested Anand Shimpi did a review of it:
AnandTech: Google Chrome: Performance and First Impressions
__________________
I do not accept support requests or deleted threads/complaints about Infractions you've received by PM, Profile or IM/Email. Just ask on the forums!


If I help you, or you just like what I said, rep me by clicking the
or under my avatar; it helps me know that my advice actually helped you.


Planned Rig of 2007:

.. But things don't go according to plan! My Actual Rig, 2009:
vernong1992 is offline  
Old 09-03-2008, 09:24 PM   #7 (permalink)
macdawg's Avatar
 
Ultra Techie

Join Date: Mar 2005

Posts: 805

macdawg is on a distinguished road
Default Re: Google Chrome Security Vulnerability
its a beta and I'm sure they'll fix it quickly. I'm pretty sure Vista vulnerabilities were found in the first week, and not the Beta the real release, one reason why I try not to use beta software a lot.
macdawg is offline  
 
Closed Thread

« Coolris addon (Firefox) Keeps crashing | New browser? »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
Game Over For Windows Vista’s Security? Osiris Windows Operating Systems and Software 0 08-08-2008 09:36 AM
Wireless disconnects seemingly randomly 636benjamin Computer Networking & Internet Access 6 07-09-2008 11:28 AM
Unholy trinity of flaws put Google users at risk Osiris Virus - Spyware Protection / Detection 1 09-25-2007 02:38 PM
User Locked Out of Account....Its Weird Though.... qbbraveheart Computer Networking & Internet Access 2 05-07-2007 09:58 AM

Contact Us - Computer Technology Forums - Archive - Top

 

All times are GMT -5. The time now is 09:04 AM.
Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.3.2 Copyright ©2002-2009, Tech-Forums.net
vBulletin skin created by Baez & Baez Computers Inc.   |   Contact Management Software and AAOutlook 		Log Out Unregistered