Re: Google Chrome Automatic File Download
- From: Juha-Matti Laurio <juha-matti.laurio@xxxxxxxx>
- Date: Thu, 4 Sep 2008 13:53:51 +0300 (EEST)
This issue was assigned to BID31000:
http://www.securityfocus.com/bid/31000
Juha-Matti
Razi Shaban [razishaban@xxxxxxxxx] wrote:
On 2 Sep 2008 22:58:27 -0000, nerex@xxxxxxxx <nerex@xxxxxxxx> wrote:
> Google's Chrome (BETA) allows files (e.g. executable files) to be automatically downloaded to the user's computer without any user prompt.
>
> To check the flaw, open a URL that points to an executable file.
>
> nerex
>
There's a huge difference between downloading and running. If a file
that is unwanted is auto-downloaded, just delete it. No harm done.
--
Razi
- Prev by Date: [USN-640-1] libxml2 vulnerability
- Next by Date: Zen Cart <= 1.3.8a SQL Injection
- Previous by thread: RE: Google Chrome Automatic File Download
- Next by thread: Google Chrome Browser (ver.0.2.149.27) Vulnerability
- Index(es):
Loading
