Bug Opens Chrome to Easy Remote Code Execution 61
Orome1 writes "ACROS Security notified Google about a peculiar behavior of the Chrome browser that can be exploited for execution of remote code outside Chrome sandbox under specific conditions. It is another case of file planting, where an application loads a data file (as opposed to binary file, leading to binary planting) from the current working directory. Google decided that this was not a vulnerability, but rather a 'strange behavior that [they] should consider changing.' The reason they provided was that 'the social engineering level involved here is significantly higher than "Your computer is infected with a virus, download this free anti-virus software and run the exe file to fix it."'"
Bug Opens Chrome to Easy Remote Code Execution More Login
Bug Opens Chrome to Easy Remote Code Execution
Related Links Top of the: day, week, month.
Slashdot Top Deals