Google's Chrome browser pwned, says security firm

Google Chrome browser has zero-day vulnerabilities that can be exploited on Windows systems, claims Vupen Security.

The security firm tweeted the news May 9 and posted a video showing a calculator program being executed from a remote location and launched outside the sandbox.

Chrome is the only browser that white hats weren’t able to exploit at the past three Pwn2Own hacking contests. At the 2011 event, Google put a $20,000 bounty on its own browser, but one contestant was a no-show and another team decided to work on another product. At the same event, Vupen hacked Safari 5 on a Mac Air notebook in less than 5 seconds.

Vupen did not release the technical details of the exploit, stating the firm will only share that information with its government customers.

About the Author

Connect with the GCN staff on Twitter @GCNtech.

inside gcn

  • IoT security

    A 'seal of approval' for IoT security?

Reader Comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group