Linked by Thom Holwerda on Fri 9th Mar 2012 09:43 UTC, submitted by bowkota
Google "As day one of the annual Pwn2Own hacker contest wound down on Wednesday, no browser suffered more abuse than Google Chrome, which was felled by an attack exploiting a previously unknown vulnerability in the most up-to-date version. Combined with a separate contest Google sponsored a few feet away, it was the second zero-day attack visited on Chrome in a span of a few hours." Google fixed the issue within 24 hours.
Permalink for comment 510093
To read all comments associated with this story, please click here.
Comment by mantrik00
by mantrik00 on Fri 9th Mar 2012 14:46 UTC
mantrik00
Member since:
2011-07-06

The Chrome hack video (http://youtu.be/c8cQ0yU89sk) from Vupen (quoted in Ars Technica) showed Chrome browser version as v11. The hack may be only theoretical (meant for sensational headlines). Chrome's auto-update policy would have ensured that all its users would be running the current version ,ie, Chrome v17 or v18 (with that hole plugged).

Unless I missed something, only Sergey Glaznov's exploit demonstrated in Google's contest pertained to the latest version of the browser.

Reply Score: 2