"Google Chrome Impacted by New Magellan 2.0 Vulnerabilities"

Researchers have discovered a new set of SQLite vulnerabilities that can allow attackers to run malicious code inside Google Chrome remotely.  There were 5 vulnerabilities found in total and were named Magellan 2.0. All apps that use an SQLite database are vulnerable to Magellan 2.0; however, the danger of "remote exploitation" is smaller than the one in Chrome, where a feature called the WebSQL API exposes Chrome users to remote attacks. The vulnerabilities could allow a malicious website to run malicious code against its Chrome visitors. The researchers who discovered the vulnerabilities notified Google and the SQLite team of these issues. Google Chrome fixed the vulnerabilities with the new Google Chrome update, and the SQLite project fixed the vulnerabilities in a series of patches they completed. 

ZDNet reports: "Google Chrome Impacted by New Magellan 2.0 Vulnerabilities"

 

Submitted by Anonymous on