Vupen Security demonstrates sophisticated Google Chrome hack

[madboyv1]

insect said:
Run in a sandbox and who cares if a script tries something malicious. Just close the sandbox instance (i.e., tab).

Except if this vulnerability is real (I phrase it this way because people are questioning the legitimacy of this hack), then the malicious page circumvents that sandbox you're so ready to hide behind as well as other security features, all without crashing the browser or otherwise immediately alerting the user. You wouldn't HAVE the chance to close the tab since if you would find out after it was too late.

Just sayin'.

 

[Guest]

LNCPapa: What is read?

 

[gwailo247]

insect said:
Why get more add-ons to do the work Chrome already does for you? Run in a sandbox and who cares if a script tries something malicious. Just close the sandbox instance (i.e., tab).

Nevermind. Chrome on buddy.

 

[doradhorror]

Guest said:
What is with all these people who make assumptions without knowing (a simple google search would have found the Chrome alternative).

CHROME HAS NOSCRIPT! It is called NotScripts.

http://optimalcycling.com/other-projects/notscripts/limitations/

Notscript is nothing compared to Noscript