AfterDawn: News

Security firm exploits serious Google Chrome browser bug

VUPEN Security has announced the discovery of a vulnerability in Google's Chrome browser software.

Google Chrome has survived assaults at the Pwn2Own contest for the last three years. Now, French security firm VUPEN says it is unhappy to announced that it has officially "Pwned" Google Chrome and its protective Sandbox measures.



VUPEN uploaded a video of the browser exploit in action which bypasses all security features including ASLR/DEP/Sandbox, without exploiting a Windows kernel vulnerability. It works on all Windows systems and with the latest versions of the Chrome browser.

In the video, a web page is loaded displaying just a text message - "Your browser is being Pwned!" - and after a few seconds of inactivity (and without a visible crash in Chrome), the windows calculator application runs. According to the VUPEN write-up, the calculator executable is downloaded and executed.

At Pwn2Own in March this year, VUPEN successfully attacked Safari in much the same way. A specially crafted web page was loaded and several seconds later, the Mac OS X calculator application was launched and a file was written to the hard drive to demonstrate that the Sandbox had been compromised.

For obvious reasons, the write-up does not disclose technical information on the exploit, only to say that it is one of the most sophisticated codes they have used so far.

Written by: James Delahunty @ 10 May 2011 23:11

• Previous article

• Google I/O conference: Android@Home gives you control over household items

• Next article

• Google shows off first Chromebooks

• 4 comments

• KillerBug

  Quote:
  Now, French security firm VUPEN says it is unhappy to announced that it has officially "Pwned" Google Chrome and its protective Sandbox measures.
  LoL...I highly doubt that they are "Unhappy" to have success...next we will have Olympic athletes who are "Unhappy" to win gold!
  

  
  

  11.5.2011 05:22 #1

• Dela

  Originally posted by KillerBug: Quote:
  Now, French security firm VUPEN says it is unhappy to announced that it has officially "Pwned" Google Chrome and its protective Sandbox measures.
  LoL...I highly doubt that they are "Unhappy" to have success...next we will have Olympic athletes who are "Unhappy" to win gold! http://www.vupen.com/demos/VUPEN_Pwning_Chrome.php
  
  "We are (un)happy to announce that we have officially Pwned Google Chrome and its sandbox." Of course, they were also happy, but it is something that kinda sucks, considering how Chrome has survived serious attacks like this for so long while its competitors haven't.

  11.5.2011 08:47 #2

• NeoandGeo

  They shouldn't be unhappy. A good group found an exploit that will be fixed hopefully before it is used for harm. :)
  

  11.5.2011 08:48 #3

• ChappyTTV

  Originally posted by KillerBug: Quote:
  Now, French security firm VUPEN says it is unhappy to announced that it has officially "Pwned" Google Chrome and its protective Sandbox measures.
  LoL...I highly doubt that they are "Unhappy" to have success...next we will have Olympic athletes who are "Unhappy" to win gold! Gotta agree here.
  While they may be unhappy for Google & it's success at being unbeatable till now, I'm positive that they're very proud about their coding prowess.
  Yes, they are happy me thinx.
  
  Also, I'm Very Glad they haven't released the exploit code before the vendor can make a patch, like some titwads do. Clear violation of the rules those of us who have fought this malware stuff lived by.
  

  15.5.2011 16:29 #4