[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Google Chrome pkcs11.txt File Planting

To: <bugtraq@xxxxxxxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxxx>, <cert@xxxxxxxx>, <si-cert@xxxxxxxx>
Subject: [Full-disclosure] Google Chrome pkcs11.txt File Planting
From: "ACROS Security Lists" <lists@xxxxxxxx>
Date: Fri, 21 Oct 2011 11:06:42 +0200

A month ago our company notified Google about a peculiar behavior of Chrome 
browser
that can be exploited for execution of remote code outside Chrome sandbox under
specific conditions. Our new blog post describes it all.

http://blog.acrossecurity.com/2011/10/google-chrome-pkcs11txt-file-planting.html

or

http://bit.ly/olK1P9

Enjoy the reading!


Mitja Kolsek
CEO&CTO

ACROS, d.o.o.
Makedonska ulica 113
SI - 2000 Maribor, Slovenia
tel: +386 2 3000 280
fax: +386 2 3000 282
web: http://www.acrossecurity.com
blg: http://blog.acrossecurity.com

ACROS Security: Finding Your Digital Vulnerabilities Before Others Do
 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Google Chrome pkcs11.txt File Planting
  - From: Thor (Hammer of God)
- Re: [Full-disclosure] Google Chrome pkcs11.txt File Planting
  - From: Chris Evans

Prev by Date: [Full-disclosure] [SECURITY] [DSA 2324-1] wireshark security update
Next by Date: [Full-disclosure] [ MDVSA-2011:157 ] freetype2
Previous by thread: [Full-disclosure] [SECURITY] [DSA 2324-1] wireshark security update
Next by thread: Re: [Full-disclosure] Google Chrome pkcs11.txt File Planting
Index(es):
- Date
- Thread