Linked by Thom Holwerda on Fri 9th Mar 2012 09:43 UTC, submitted by bowkota
Google "As day one of the annual Pwn2Own hacker contest wound down on Wednesday, no browser suffered more abuse than Google Chrome, which was felled by an attack exploiting a previously unknown vulnerability in the most up-to-date version. Combined with a separate contest Google sponsored a few feet away, it was the second zero-day attack visited on Chrome in a span of a few hours." Google fixed the issue within 24 hours.
Thread beginning with comment 510161
To view parent comment, click here.
To read all comments associated with this story, please click here.
Bill Shooter of Bul
Member since:
2006-07-14

Windows is not a single platform, and the interactions with the rest of the system are more complex because its built in, and its easy for them to screw up a big customer with a bug fix. Its happened in the past, wouldn't be surprised if it happens again.

I would assume that Chome's tests are less dependant on the other pieces of software installed, and less likely to cause problems for other pieces of software.

Reply Parent Score: 2

Soulbender Member since:
2005-08-18

and the interactions with the rest of the system are more complex because its built in, and its easy for them to screw up a big customer with a bug fix.


Making bad design decisions isn't a good excuse.

Reply Parent Score: 3

moondevil Member since:
2005-07-08

No, but sadly very common in big companies.

Reply Parent Score: 2

Bill Shooter of Bul Member since:
2006-07-14

Developers can make terrible decisions and assumptions when they write code. And often management doesn't help.

My first job was like beating my head against the wall, with a boss that kept directing me to do stupid things with the software out of paranoia of pirating. Keep in mind the software was never actually sold to anyone, ever. But we pretended to sell it in order for sales guys to use it as a baraning chip when selling some of our hardware. Really, anyone could call up our support and get it shipped free of charge to them, no questions asked. But, we had to put crazy half baked ant theft stuff in there to reinforce the "deal" the customers were getting. It being half baked usually just killed the customers data at a whim, due to a crazy assumption that was built in to the requirements.

Reply Parent Score: 2