Google Chrome, Microsoft Edge zero-day vulnerability shared on Twitter

The_King

The_King

Level 12
Thread author
Verified
Top Poster
Well-known
Aug 2, 2020
542
Content source
https://www.bleepingcomputer.com/news/security/google-chrome-microsoft-edge-zero-day-vulnerability-shared-on-twitter/
A security researcher has dropped a zero-day remote code execution vulnerability on Twitter that works on the current version of Google Chrome and Microsoft Edge.
Click to expand...

A zero-day vulnerability is a security bug that has been publicly disclosed but has not been patched in the released version of the affected software.
Today, security researcher Rajvardhan Agarwal released a working proof-of-concept (PoC) exploit for a remote code execution vulnerability for the V8 JavaScript engine in Chromium-based browsers.
Just here to drop a chrome 0day. Yes you read that right.r4j0x00/exploits pic.twitter.com/PpVJrVitLR
— Rajvardhan Agarwal (@r4j0x00) April 12, 2021
Click to expand...
While Agarwal states that the vulnerability is fixed in the latest version of the V8 JavaScript engine, it is not clear when Google will roll out the Google Chrome.
Click to expand...
www.bleepingcomputer.com

Google Chrome, Microsoft Edge zero-day vulnerability shared on Twitter

A security researcher has dropped a zero-day remote code execution vulnerability on Twitter that works on the current version of Google Chrome and Microsoft Edge.
www.bleepingcomputer.com www.bleepingcomputer.com
 
  • Like
  • Thanks
  • Wow
Reactions: silversurfer, plat, CyberTech and 9 others
[correlate]

[correlate]

Level 18
Top Poster
Well-known
May 4, 2019
801
NEW: A security researcher has dropped a Chrome and Edge zero-day on Twitter -PoC available -0-day impacts the V8 JavaScript engine -Issue patched in V8 -Not patched in Chromium-based browsers due to the 2-week patch gap
Click to expand...
therecord.media

Security researcher drops Chrome and Edge exploit on Twitter

An Indian security researcher has published details today about a zero-day vulnerability impacting Google Chrome, Microsoft Edge, and other Chromium-based browsers like Opera and Brave.
therecord.media therecord.media
 
  • Like
Reactions: harlan4096, silversurfer, plat and 7 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 76
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,567
  • Like
  • Thanks
  • +Reputation
Reactions: harlan4096, silversurfer, plat and 8 others
danb

danb

From VoodooShield
Verified
Top Poster
Developer
Well-known
May 31, 2017
1,658
This is pretty cool, but in all fairness to Chrome, you have to disable its sandbox to get it to work. If he could escape the sandbox, then it would be super cool.

Having said that, this is a great and super easy test for deny-by-default and other products with anti-exploit mechanisms. The results might surprise you.
 
  • Like
Reactions: harlan4096, [correlate], enaph and 1 other person
You must log in or register to reply here.

Similar threads

[correlate]
    • Like
    • +Reputation
Millions of Exim mail servers exposed to zero-day RCE attacks
Replies
0
Views
1,344
News Archive
[correlate]
[correlate]
Gandalf_The_Grey
    • Like
    • +Reputation
Microsoft September 2023 Patch Tuesday fixes 2 zero-days, 59 flaws
Replies
2
Views
1,512
News Archive
Gandalf_The_Grey
Gandalf_The_Grey
[correlate]
    • Like
    • +Reputation
Atlas VPN zero-day vulnerability leaks users' real IP address
Replies
0
Views
1,093
News Archive
[correlate]
[correlate]

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top