hat tip to shoemoney due to me playing on twitter didn’t notice in my RSS http://milw0rm.com/exploits/6355 

DaveN

7 Comments

  • 1

    ROTFL – is Chrome secure, isn’t it ?

    SEO blog | http://www.seonews.it

    3rd September 2008 @ 20:22

  • 2

    Hi,
    The “PoC Google Chrome exploit” seems to be fixed already :)
    When I try any of the exploit test/demo I get a “Save as …” window.

    Nickel Chrome :)

    Oukiva

    4th September 2008 @ 03:55

  • 3

    Google Chrome is very fast, but with firefox i can have a lot of extensions… so… i keep my Fierfox.

    Saint Germain | http://www.saintger.com/

    4th September 2008 @ 13:14

  • 4

    This is NOT a true exploit. It only tells the browser to download a .exe file. The same “exploit” works on any other browser, the difference is that Chrome has auto-download enabled by default. So you can “Fix” this “exploit” by disabling auto-download, then Chrome will ask for a place to save the .exe file just like the other browsers.

    Imo, I love the autodownload feature and it could come disabled in default configuration to the newbies :)

    LeMMiNGS | http://www.lemmings.com.br

    8th September 2008 @ 02:26

  • 5

    This is bad planning on chromes part, leaving auto download on by default, people exploit that.
    Technically, it’s an exploit!

    Roraor | http://wee

    10th September 2008 @ 00:36

  • 6

    [...] access my own bookmarks any other way except to re-enable the bar again – first exploit? (via Dave Naylor’s site) – erratic behavior especially when quickly closing a few tabs; page goes blank, even though [...]

    Google Chrome - after two weeks of daily usage

    21st September 2008 @ 07:42

  • 7

    ya it fixed already

    jonsoncal | http://www.xhtmlcssexpert.com/

    16th May 2009 @ 11:01

Write a Comment

*

*

*

Hear me speak at SES London 2010 Subscribe
to the David Naylor feed Follow
David Naylor's Twitter feed

View Dave's Blog