« Web 2.0 Application Proxy, Profiling and Fuzzing tool | Main | JavaScript flaw reported in Adobe Reader »

Google Chrome Universal XSS Vulnerability

"During unrelated research, I came across a number of security issues that reside in various parts of Google's web browser - Google Chrome.

These issues pose a major threat to any user that browses a maliciously crafted page using Internet Explorer and has Google Chrome installed alongside.

Using a vulnerability in the ChromeHTML URL handler, it is possible to force Google Chrome load arbitrary URIs when it is launched through IE. Combined with other issues, this seemingly harmless vulnerability opens the door to two major attack vectors:

  • Bypass the Same Origin Policy restrictions for any site (this has the same impact as Universal XSS)
  • Enumerate victim's local files and directories

A thorough explanation of the issues, attack vectors and impact can be found in the following advisory."

Read more: http://blog.watchfire.com/wfblog/2009/04/google-chrome-universal-xss-vulnerability-.html


Feed You can follow this conversation by subscribing to the comment feed for this post.

All Comments are Moderated and will be delayed!

the biggest drawback is that there aren’t plugins available yet. And I know when I tried it right at the beginning that it had issues with displaying popups and that kind of thing. I tried it again today and the display issues seems to be gone. And I’ve also read that plugins are indeed available now, but slow getting started and not yet ready for general public production like Firefox has. So the speed is great and the only thing Chrome seems to be lacking is some bells and whistles that I’ve become accustomed to with Firefox.