Object lifetime issue in Blink in Google Chrome before 72.0.3626.121 allowed a remote malicious user to potentially perform out of bounds memory access via a crafted HTML page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google chrome |
||
google puppeteer |
These statistics are based on detection verdicts of Kaspersky Lab products received from users who consented to provide statistical data. According to Kaspersky Security Network, Q1 2019 is remembered mainly for mobile financial threats. First, the operators of the Russia-targeting Asacub Trojan made several large-scale distribution attempts, reaching up to 13,000 unique users per day. The attacks used active bots to send malicious links to contacts in already infected smartphones. The mailings ...
Plus: Security sandbox escape vuln in 32-bit Windows 7 boxes exploited
Updated If Google Chrome is bugging you to update it right now, please stop what you're doing, and get that upgrade. The latest version fixes a security vulnerability (CVE-2019-5786) that can be potentially exploited by malicious webpages to hijack the software, and run spyware, ransomware, and other nasties on your device or machine. According to Googler Abdul Syed, the ads giant is "aware of reports that an exploit for CVE-2019-5786 exists in the wild," meaning criminals and other miscreants a...