Google Chrome Download Vulnerability

By | September 4, 2008


Google Chrome Download VulnerabilityUS-CERT is aware of a vulnerability that affects the Google Chrome web browser. This vulnerability is due to a default configuration that allows files to be downloaded without prompting the user. In addition, downloaded files can be opened with a single click, which could allow a user to inadvertently open a malicious file.

US-CERT encourages users to enable the “Ask where to save each file before downloading” option within the “Minor Tweaks” tab in the browser preferences. Although this does not fix the underlying vulnerability, selecting this option will warn the user before files are downloaded. Users should still exercise caution when visiting and downloading items from untrusted websites.

Source: US-CERT

[digg-reddit-me]


About (Author Profile)


Vygantas is a former web designer whose projects are used by companies such as AMD, NVIDIA and departed Westood Studios. Being passionate about software, Vygantas began his journalism career back in 2007 when he founded FavBrowser.com. Having said that, he is also an adrenaline junkie who enjoys good books, fitness activities and Forex trading.

Comments (3)

Trackback URL | Comments RSS Feed

  1. Tiago Sá says:
    September 4, 2008 at 4:46 am

    Most browsers (including Firefox) have a very BAD feature that is very risky and insecure. When we click to download something, it starts to download right away, even before we say where we want it saved. There are some javascript exploits that make the browser start to download malitious files and since they usually are very light they install themselves on our computer without our consent. Firefox 2 had this, I don’t know if Firefox 3 has it too but I think it does. Happened to me once, I was pissed as hell. Back in the time I was still not using NoScript… Now, that’ll never happen again, no siree.

  2. ayi usman says:
    September 13, 2008 at 1:50 pm

    please i need google chreme

  3. JMember says:
    December 11, 2008 at 6:45 pm

    I disagree.
    Google Chrome is a web browser that targets easy, fast and secure way to do work. Although it opens a downloaded file with a single click, that is users decision, not browsers decision. Oh, and downloading to a specific path is more secure than ever, you can access your files from that place, so your files don’t go everywhere.
    Do you want Google Chrome? Visit http://www.JMember.tk

«
»