Mozilla Security Found Flaws in Google Chrome Security


The open-source browser team –Mozilla Security– found security flawson its rival browser, Google Chrome. A post from the Google Chrome blog said that there’s a flaw in the V8 Javascript engine of Chrome that might allow specially-created Javascript on a web page to read unauthorized memory and bypass security checks. They released a patch to fix the flaw as the threat could lead in disclosing unauthorized data to the attackers.

The severity of the flaw is high as attackers might be able to run arbitrary code within the Google Chrome sandbox. Another fix Google Chrome had tweaked was that Google Chrome will no longer connects to HTTPS (SSL) sites whose certificates are signed hashing algorithms, particularly MD2 or MD4 since these algorithms are weak and might allow attackers spoofing an invalid site as a valid HTTPS site.

Social media & sharing icons powered by UltimatelySocial