Security flaws everywhere.

After Google Chrome has been hacked twice, Microsoft’s Internet Explorer 9 was the second browser to fail the security challenge.

By exploiting two unknown vulnerabilities, Vupen Security was able to remotely open a calculator running on a Windows 7 SP1 machine. While no additional details were revealed, both IE and Google Chrome exploits were a combination of at least a couple of previously unknown flaws.



Google Chrome

A young hacker nicknamed PinkiePie has also successfully hacked Google’s Chrome web browser, which was exploited for the third time in the last week or so. According to PinkiePie, he spent past three days refining the attack, so it would be able to take a full control over machine and escape the famous Google sandbox.

Internet Explorer 10 Improvements

Although IE9’s sandbox is less restrictive than Google’s Chrome, which makes it easier to bypass, Vupen Security CEO Chaouki Bekrar, said that Internet Explorer 10 running on Windows 8 will close this gap, thanks to various “Protected Mode” improvements.

Security? What Security?

Interestingly enough, Bekrar also said that their group had enough zero day attacks to target all the web browsers, including Safari and Mozilla Firefox.

There is no such thing as a bullet proof web browser, at least yet.

[Picture Source: ArsTechnica]