It didn't manage to do it during the most recent Pwn2Own challenge, but VUPEN Security is now claiming that it has finally managed to hack Google's Chrome browser and break into its so-called "sandbox." According to the firm, the exploit relies on some newly discovered zero day vulnerabilities, works on all Windows operating systems (and only Windows, apparently), and could give malicious websites the ability to download code from a remote source and execute it on a user's computer -- the video after the break shows an example, in which the Windows Calculator application is downloaded and run automatically. For its part, Google says it has been unable to confirm the hack since VUPEN hasn't shared its findings with the company -- something it apparently doesn't plan to do, as it says it only shares its vulnerability research with its "government customers for defensive and offensive security."
Continue reading Security firm claims to have hacked Chrome's sandbox
Security firm claims to have hacked Chrome's sandbox originally appeared on Engadget on Tue, 10 May 2011 10:02:00 EDT. Please see our terms for use of feeds.
Permalink |
VUPEN Security | Email this | Comments
Source: http://feeds.engadget.com/~r/weblogsinc/engadget/~3/TnNGw3Yxyps/
keira knightley patrick dempsey thunder old navy banana republic
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.