Bugtraq: Re: Advisory: Google Chrome Window Object Suppressing Remote Denial of Service.

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Advisory: Google Chrome Window Object Suppressing Remote Denial of Service.

From: ian () chromium org
Date: Tue, 30 Sep 2008 10:40:45 -0600

This issue, as reported to us by Aditya, is being tracked at http://code.google.com/p/chromium/issues/detail?id=2877. 
We would like to note that we discovered the outlined behavior several weeks ago internally, and publicly reported it 
to Webkit: https://bugs.webkit.org/show_bug.cgi?id=20661

While this is a low-priority bug, we do not believe it constitutes a security threat. The vector merely permits windows 
to be gracefully closed, rather than "killed", and applies only to windows that the malicious page could already script 
(that is, not an arbitrary third-party window). There is no risk of stealing user data, or any sort of remote code 
execution

By Date By Thread

Current thread:

Advisory: Google Chrome Window Object Suppressing Remote Denial of Service. Aditya K Sood (Sep 29)
- <Possible follow-ups>
- Re: Advisory: Google Chrome Window Object Suppressing Remote Denial of Service. redb0ne (Sep 30)
- Re: Advisory: Google Chrome Window Object Suppressing Remote Denial of Service. ian (Sep 30)