ID: IRCNE2012071548
Date: 2012-07-12
According to "zdnet", as proven by the CanSecWest Pwn2Own hacks, the Flash Player plugin that ships with Google Chrome is a major weak spot that has been targeted by attackers.
Google has quietly tweaked the browser to put Flash in the browser's more restrictive sandbox on all versions of Windows, making it significantly harder to exploit a Flash Player vulnerability to get full system access.
The fully sandboxed Flash was included in the Chrome 21 beta release, according to Google's Justin Schuh.
Earlier this month, Google introduced a "double security" sandbox concept for Chrome on Linux to offer improved security on the open-source operating system.
- 2