As We all know , Google Chrome has been released a few days ago . And You know what , the 0day for Google chrome browser has been released in yesterday as well ! hilarious. The advisory on Google Chrome itself was published by EvilFingers. And it’s also published on milw0rm as well.
Google Chrome
Here ’s the short excerpt of the advisory :
—————————————————
Software:
Google Chrome Browser 0.2.149.27Tested:
Windows XP Professional SP3Result:
Google Chrome Crashes with All TabsProblem:
An issue exists in how chrome behaves with undefined-handlers in chrome.dll version 0.2.149.27. A crash can result without user interaction. When a user is made to visit a malicious link, which has an undefined handler followed by a ’special’ character, the chrome crashes with a Google Chrome message window “Whoa! Google Chrome has crashed. Restart now?”. It crashes on “int 3″ at 0×01002FF3 as an exception/trap, followed by “POP EBP” instruction when pointed out by the EIP register at 0×01002FF4.Proof of Concept:
http://evilfingers.com/advisory/google_chrome_poc.php
Credit:
Rishi Narang
psy.echo [ at ] gmail.com
www.greyhat.in
www.evilfingers.com
—————————————————
Further info about this 0day can be grabbed here.
Cheerz!
Incoming search terms for the article:
0day google dork, hidden meaning in google logo, shocking hidden message behind google 2010 logo,Popular Today naruto shippuden 170 videolog, cat physics walkthrough, naruto shippuden 168 videolog, facebook spy, backtrack 3, shy engine, vtunnel, BackTrack tutorial, backtrack 3 tutorial, facebook photo viewer, See The Shocking Hidden Message In The Google Logo that GOOGLE Does NOT Want You To Know About!, how to view private myspace pictures, my empire hack, view private myspace pictures, SHOCKING: RUDE HIDDEN MESSAGE in Toy Story 3!, facebook keylogger, HIDDEN MESSAGE IN GOOGLE LOGO, Terri Moulton Horman, rapidleech, brute force facebook, Computer Security Stuff on eBay!
Electronics stuffs on ebay
Google Chrome 0Day Vulnerability Released ! is posted on September 3rd, 2008 by admin. This post is filed under: Security, exploits, secInfo, 0day, 0day exploit, free 0day exploit, Google Chrome, Google Chrome advisory .
also don’t forget that Chrome is also prone to carpet bombing…
http://cskane.wordpress.com/2008/09/03/google-chrome-has-the-same-bomb-as-safari/
@dblackshell : Nice info , dude
[...] Chrome ’s Carpet Bomb Yesterday I posted about a 0day occured on Google Chrome Browser , and just today dblackshell informed me about another security [...]
[...] to find any security flaw on this, brand new Google Chrome Browser ! This post is still related to my Google Chrome 0day article anyway. Well , I just took my daily rss-reading on Packetstormsecurity , and found 2 Advisories on [...]