Welcome to DU!
The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards.
Join the community:
Create a free account
Support DU (and get rid of ads!):
Become a Star Member
Latest Breaking News
Editorials & Other Articles
General Discussion
The DU Lounge
All Forums
Issue Forums
Culture Forums
Alliance Forums
Region Forums
Support Forums
Help & Search
Google Chrome hacked at $1m Pwnium contest [View all]
http://www.slashgear.com/google-chrome-hacked-at-1m-pwnium-contest-08217485/Eric Schmidt may have claimed that Google’s Chrome browser is “by far the safest” at his MWC 2012 keynote speech last week, but that hasn’t stopped an enterprising student from finding an exploit at CanSecWest Pwnium, an alternative to the Pwn2Own contest.
The Russian university student, Sergey Glazunov, managed to bypass Chrome’s sandbox and exploit two vulnerabilities in the extension sub-system. Glazunov finds bugs in the browser as part of Google’s bug bounty program, and was commended for his research work, as well as the exploit itself.
Talking to ZDNet, Justin Schuh, part of Google’s security team, said:
It didn’t break out of the sandbox [but] it avoided the sandbox. It was an impressive exploit. It required a deep understanding of how Chrome works. This is not a trivial thing to do
6 replies
= new reply since forum marked as read
= new reply since forum marked as read