Language Selection

English French German Italian Portuguese Spanish

Google Chrome Browser Exhibits Risky Behavior

Filed under
Software

Google (NSDQ: GOOG)'s Chrome browser may have been designed with security in mind, but that hasn't immunized it from security concerns.

Robert "RSnake" Hansen, CEO of SecTheory, a computer security consulting firm, has identified a vulnerability in Chrome that allows JavaScript code to execute when a user views the source code of a Web page using the view-source: directive.

Hansen's blog post about the vulnerability includes a proof-of-concept Web link that, for Chrome users, triggers the flaw and uses JavaScript to present a dialog box that says, "If you can see this, use another browser...seriously."

While any link can trigger JavaScript in this way, this particular issue could provide a building block for a social engineering attack against a Web developer.

Google is planning to fix the issue shortly. "We believe this behavior does not introduce any particular risk for the vast majority of users who do not use view-source: to browse Web pages," said a company spokesperson in an e-mailed statement. "We're working to more accurately align the view-source: page with expected behavior."

rest here




More in Tux Machines

Getting OpenStack Ready for the Enterprise

OpenStack is gaining popularity as the cloud platform of choice for IT organizations. This was reflected in a 2013 IDG survey that found as much as 64 percent of IT managers including OpenStack in their technology roadmap. In the current fast-paced IT market, the massive scalability and flexible, modular architecture of OpenStack can help give organizations the agility they need. Read more

Open source projects that warrant data center managers' attention

When you're making the case to a data center manager about tech that is worthy of her consideration, make sure these three open source options are on your list. Read more

Open source and Made in Italy: Arduino are circuit boards with a sense of style

One of the more surprising applications has been the natural marriage between the Arduino board and Lego. Once seen only as a child's building block toy, Lego is finding startling utility as an instant mechanical prototype maker for Arduino ideas. Read more

11 Useful Utilities To Supercharge Your Ubuntu Experience

Whether you’re a relative novice or a seasoned pro, we all want to get the most from our operating system. Ubuntu, like most modern OSes, has more to offer than what is presented at first blush. From tweaking and refining the look, behaviour and performance of the Unity desktop to performing system maintenance, there are a huge array of useful utilities and apps that can help tune Ubuntu to meet your needs in no time. Read more