Another Security Bug Knocks Google Chrome

Security researchers have detected a buffer overflow vulnerability in new Google web Browser Chrome, a flaw that could facilitate an invader to enter into a system and take full charge of the user’s computer.

Mishandling of the “save as” function has led to this overflow vulnerability because of which if a user saves a page that has malicious content on it, it would result in stack-based overflow error.

This would permit the remote hacker to enter into user’s machine and plant a malicious code into the computer which will further enable the invader to exploit the device and the user as he likes.

Security researcher Affiv Raff has an evidence of a flaw in the Browser Chrome which he posted on his website yesterday.

The researcher said the defect makes the browser an open platform for bombing attacks by the intruders which emerged from a basic defect in the underlying user agent Safari 3.1. This defect is called carpet bombing glitch.

Raff said it's incomprehensive why Google took several features from other browsers and embedded them all together. Security wise the browser’s stand is nil.

Numerous Chrome beta version flaws are expected to be present in the browser. There are loopholes in the security system of the features Google has taken from other browsers so now Google will have to trace all those defects and fix them to make their browser faultless.

It’s a time consuming process and till the vulnerabilities are cured the Chrome users are at a potential risk.

Contrary to what Google advertised, the Chrome is not at all secure rather it has some inherent security flaws in the design

Researcher Rishi Narang, discovered another deadly flaw in the Chrome that can permit the attacker to crash the browser without any interaction.

Narang wrote on his website, “When a user is made to visit a malicious link, which has an undefined handler followed by a 'special' character, the chrome crashes with a Google Chrome message window ‘Whoa! Google Chrome has crashed. Restart now?.”

Another negative point is the section 11 of the user license agreement which opens up in a pop-up window when software is downloaded by the user. The section was under controversy since the launch of the Browser Chrome, though, now it has been changed to favor the users.

But the security system of the Chrome Browser has been referred as inefficient by the experts.