Welcome to DU!
The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards.
Join the community:
Create a free account
Support DU (and get rid of ads!):
Become a Star Member
Latest Breaking News
General Discussion
The DU Lounge
All Forums
Issue Forums
Culture Forums
Alliance Forums
Region Forums
Support Forums
Help & Search
General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsGoogle Chrome hacked at $1m Pwnium contest
http://www.slashgear.com/google-chrome-hacked-at-1m-pwnium-contest-08217485/Eric Schmidt may have claimed that Googles Chrome browser is by far the safest at his MWC 2012 keynote speech last week, but that hasnt stopped an enterprising student from finding an exploit at CanSecWest Pwnium, an alternative to the Pwn2Own contest.
The Russian university student, Sergey Glazunov, managed to bypass Chromes sandbox and exploit two vulnerabilities in the extension sub-system. Glazunov finds bugs in the browser as part of Googles bug bounty program, and was commended for his research work, as well as the exploit itself.
Talking to ZDNet, Justin Schuh, part of Googles security team, said:
It didnt break out of the sandbox [but] it avoided the sandbox. It was an impressive exploit. It required a deep understanding of how Chrome works. This is not a trivial thing to do
InfoView thread info, including edit history
TrashPut this thread in your Trash Can (My DU » Trash Can)
BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks)
6 replies, 1476 views
ShareGet links to this post and/or share on social media
AlertAlert this post for a rule violation
PowersThere are no powers you can use on this post
EditCannot edit other people's posts
ReplyReply to this post
EditCannot edit other people's posts
Rec (1)
ReplyReply to this post
6 replies
= new reply since forum marked as read
Highlight:
NoneDon't highlight anything
5 newestHighlight 5 most recent replies
Google Chrome hacked at $1m Pwnium contest (Original Post)
steve2470
Mar 2012
OP
Esse Quam Videri
(685 posts)1. Errrr.......
Could someone translate?
HopeHoops
(47,675 posts)2. He went around the Maginot Line
MrScorpio
(73,631 posts)4. Think Kirk's Kobayashi Maru solution
Pretty damn slick, if you ask me.
madokie
(51,076 posts)3. I don't want anything to do with google, sure don't want chrome on my computer
I simply don't trust them with my information any more.
qb
(5,924 posts)5. IMO this makes Chrome a safer browser than IE. However...
since google got into the business of whoring out personal data, I've stopped using my Google account. I logged in once to "pause" their snooping (there wasn't a "stop" option).
Now I search with www.ixquick.com/ and startpage.com/ (the latter is a private search engine that uses Google)
saras
(6,670 posts)6. Who is defining "safe"?
What Google Chrome does, BY DESIGN, is not considered "safe" by a lot of people.