Google has fixed two high-severity vulnerabilities in the stable version of its Chrome browser that could have let an attacker remotely take over a person's computer.
With one attack on Google's V8 JavaScript engine, malicious JavaScript on a Web site could let an attacker gain access to sensitive data or run arbitrary code on the computer, Google said in a blog post Tuesday. With the other, a page with XML-encoded information could cause a browser tab crash that could let an attacker run arbitrary code within a Chrome protected area called the sandbox.
More: http://news.cnet.com/8301-30685_3-10317320-264.html
Download for Windows: http://download.cnet.com/Google-Chrome/3000-2356_4-10881381.html
With one attack on Google's V8 JavaScript engine, malicious JavaScript on a Web site could let an attacker gain access to sensitive data or run arbitrary code on the computer, Google said in a blog post Tuesday. With the other, a page with XML-encoded information could cause a browser tab crash that could let an attacker run arbitrary code within a Chrome protected area called the sandbox.
More: http://news.cnet.com/8301-30685_3-10317320-264.html
Download for Windows: http://download.cnet.com/Google-Chrome/3000-2356_4-10881381.html