[ga] Google Chrome Command Injection Vulnerability

["Jeffrey A. Williams" <jwkckid1@xxxxxxxxxxxxx>]

All,

  It appears that Google still hasn't fully tested it's Chrome product
thoroughly.  This leaves many unwitting users vulnerable unnecessarily.
Such lack of user consideration seems both odd and unexcpetable
for any professional organization or company.  We would urge
yet again, that Google significantly modify it's businesses practices
immediately so as to take far better care when releasing it's
products for public use as exposing members of the public
and/or consumers in such a manner as this report indicates,
only serves to propagate ill will, and endangers users unnecessarily.

Vint, perhaps you could be so kind and considerate to redouble
your "Evangelistic" efforts within the Google organization to
discontinue releasing for public/consumer use defective products
and services as a very basic level such as Chrome.  This error
is a VERY basic one that should have been caught early on in
the development stage.

See:
Description: Chrome is a popular web browser from Google. It is
reported to be vulnerable to a command injection vulnerability due
to insufficient sanitization of "chomeHTML" URLs. However, other
reports have indicated that this vulnerability may not be exploitable
by remote users.  Additionally, some reports have indicated that
Microsoft Internet Explorer 8 Beta may be vulnerable when Google
Chrome is installed.  Proofs-of-concept are publicly available for
this vulnerability, but no confirmation of exploitability.

References:
Retrogod Security Advisory (includes proof-of-concept)
http://retrogod.altervista.org/9sg_chrome.html
SecurityFocus BIDs
http://www.securityfocus.com/bid/32997
http://www.securityfocus.com/bid/32999

Regards,

Spokesman for INEGroup LLA. - (Over 284k members/stakeholders strong!)
"Obedience of the law is the greatest freedom" -
   Abraham Lincoln
"YES WE CAN!"  Barack ( Berry ) Obama

"Credit should go with the performance of duty and not with what is
very often the accident of glory" - Theodore Roosevelt

"If the probability be called P; the injury, L; and the burden, B;
liability depends upon whether B is less than L multiplied by
P: i.e., whether B is less than PL."
United States v. Carroll Towing  (159 F.2d 169 [2d Cir. 1947]
===============================================================
Updated 1/26/04
CSO/DIR. Internet Network Eng. SR. Eng. Network data security IDNS.
div. of Information Network Eng.  INEG. INC.
ABA member in good standing member ID 01257402 E-Mail
jwkckid1@xxxxxxxxxxxxx
My Phone: 214-244-4827