Google Chrome Frame Update Fixes Bugs and a Microsoft Discovered Vulnerability
Google Chrome Frame is an open-source plug-in released by the Mountain View-based search engine giant a few months ago. It gives Microsoft’s Internet Explorer browser HTML 5 compatibility and faster JavaScript – basically allowing the IE user to run anything that Google Chrome can. The official explanation provided by Google was that it wanted to help developers that want to use the latest open web technologies in the Microsoft developed web browser, Internet Explorer.
As you can imagine, Microsoft didn’t exactly like that Google came up with a way to turn IE into a Chrome clone. At the time it advised Internet Explorer 8 users to stay away from Google Chrome Frame – for security reasons. As a Microsoft spokesperson explained, “Google Chrome Frame running as a plugin has doubled the attach area for malware and malicious scripts.”
Speaking of security, Google has recently updated Google Chrome Frame to version 4.0.245.1. The update was released to fix a few bugs and plug one security vulnerability – vulnerability that Microsoft uncovered. We imagine there was much cheering in Redmond when they discovered the vulnerability. Leaving frivolities aside, here are the details Google provided:
Google Chrome Frame 4.0.223.9 and earlier versions were vulnerable to a cross-origin bypass.
Severity: High. An attacker could have bypassed cross-origin protections. Although important, "High" severity issues do not permit persistent malware to infect a user's machine. We're unaware of any exploitation of this issue.
Credit: Thanks to Billy Rios and Microsoft Vulnerability Research (MSVR) and also to Lostmon for finding and reporting this vulnerability responsibly.
Now let’s see what bugs the Google Chrome Update fixes:
- Network requests no longer fail randomly
- CFInstall.js can better detect compatible opera rating systems and browser versions.
- CFInstall.js allows users to cancel the installation frame
- CFInstall.js no longer caches the isAvailable result
- Follow redirects properly
- IE8 no longer freezes intermittently
- Data directories are removed on uninstall
Tags: Google, Google Chrome Frame,
As you can imagine, Microsoft didn’t exactly like that Google came up with a way to turn IE into a Chrome clone. At the time it advised Internet Explorer 8 users to stay away from Google Chrome Frame – for security reasons. As a Microsoft spokesperson explained, “Google Chrome Frame running as a plugin has doubled the attach area for malware and malicious scripts.”
Advertising
Speaking of security, Google has recently updated Google Chrome Frame to version 4.0.245.1. The update was released to fix a few bugs and plug one security vulnerability – vulnerability that Microsoft uncovered. We imagine there was much cheering in Redmond when they discovered the vulnerability. Leaving frivolities aside, here are the details Google provided:
Google Chrome Frame 4.0.223.9 and earlier versions were vulnerable to a cross-origin bypass.
Severity: High. An attacker could have bypassed cross-origin protections. Although important, "High" severity issues do not permit persistent malware to infect a user's machine. We're unaware of any exploitation of this issue.
Credit: Thanks to Billy Rios and Microsoft Vulnerability Research (MSVR) and also to Lostmon for finding and reporting this vulnerability responsibly.
Now let’s see what bugs the Google Chrome Update fixes:
- Network requests no longer fail randomly
- CFInstall.js can better detect compatible opera rating systems and browser versions.
- CFInstall.js allows users to cancel the installation frame
- CFInstall.js no longer caches the isAvailable result
- Follow redirects properly
- IE8 no longer freezes intermittently
- Data directories are removed on uninstall
Tags: Google, Google Chrome Frame,
I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 28 May 2012
Mozilla introduced a new program meant to educate millions of people, the Mozilla Webmaker program.
By George Norman on 26 May 2012
Piriform updated its products, making CCleaner less annoying and Defraggler a lot faster.Related News
By George Norman on 16 Dec 2011
Earlier this week, Mountain View-based search engine giant Google announced that version 16.0 of its Chrome web browser graduated from the Beta to the Stable Channel. I remind you that Google 
By George Norman on 16 Dec 2011
At the end of the year, the team behind incredibly popular search engine Google takes a look back and uncovers what the millions of users out there searched for the most, what caught the publics attention during the year
By George Norman on 25 Jan 2012
People keeping track of these things will remember that back in the autumn of 2010 Google trimmed its privacy policies, that Google simplified and updated its privacy policies. Despite this fact, Google still has some 
By George Norman on 23 Jan 2012
The fifth edition of the Doodle 4 Google competition has kicked off and all K-12 students in the US are invited to take part in contestAdvertising
Hot Software Updates
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP Home29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
Google Chrome Frame Update Fixes Bugs and a Microsoft Discovered Vulnerability
HTML Linking Code
HTML Linking Code