Google's Chrome browser pwned, says security firm
Google Chrome browser has zero-day vulnerabilities that can be exploited on Windows systems, claims Vupen Security.
The security firm tweeted the news May 9 and posted a video showing a calculator program being executed from a remote location and launched outside the sandbox.
Chrome is the only browser that white hats weren’t able to exploit at the past three Pwn2Own hacking contests. At the 2011 event, Google put a $20,000 bounty on its own browser, but one contestant was a no-show and another team decided to work on another product. At the same event, Vupen hacked Safari 5 on a Mac Air notebook in less than 5 seconds.
Vupen did not release the technical details of the exploit, stating the firm will only share that information with its government customers.
Connect with the GCN staff on Twitter @GCNtech.