Chrome’s ‘Save As’ Flaw Could Give Attackers Control

September 08th, 2008 | Category: Tech Talk

Bach Khoa Internetwork safety measure, a security-research firm in Vietnam, claims to be the first to discover a critical vulnerability in Google’s Chrome browser.

“This is the first critical Chrome vulnerability permitting [a] hacker to perform a remote code-execution attack and take complete control of the affected system,” the firm wrote in its Sept. 5 advisory. While four Chrome vulnerabilities were discovered, Bach Khoa said the “Save As” flaw is the only one that can allow an attacker

to launch remote attacks from a victim’s PC. Other vulnerabilities just crash the browser.

The vulnerability is caused by a boundary error when handling the “Save As” operate. When a user saves a malicious page with a title tag in the HTML cipher, the program causes a stack-based overflow, according to Bach Khoa. A hacker could construct a specially crafted Web page that contains malicious cipher, trick a user into visiting that […]

Orginal post by dhiram

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Netvouz
  • DZone
  • ThisNext
  • MisterWong
  • Wists
Related Articles
  • Google Releases Another Beta for Chrome Browser
  • Apple, Microsoft Feud by Safari, World Wide Web Explorer Flaws
  • Adobe Reader Patch Fixes Remote-Control Vulnerability
  • Passcode Vulnerability Returns in iPhone Updates
  • Analyst Says Google’s Chrome Browser Needs Polishing
  • Better Than Chrome? Chrome On A Stick!
  • Chrome Hints Google Aims To Become ‘Big Brother’
  • Half Million Brits to Give Up World Wide Web to Save Money
  • Browser Wars: Google’s Chrome vs. Microsoft’s IE8
  • Google Chrome’s Fine Print Spurs Privacy Concerns

    • No comments yet. Be the first.

    Leave a reply