Centre issues hacker warning for Google Chrome for desktop users - Hindustan Times
close_game
close_game

Centre issues hacker warning for Google Chrome for desktop users

By | Edited by Aryan Prakash
Sep 17, 2022 10:55 AM IST

Using these vulnerabilities, the agency warns, a remote hacker then could execute arbitrary code and launch a denial of service attack, making the system inaccessible to the original user.

The Narendra Modi government has issued a high-risk warning to Google Chrome desktop users of remote hackers getting access to the system and executing malicious operations. The Indian Computer Emergency Response Team (CERT-IN) has issued the advisory with a high severity rating on September 16 against multiple vulnerabilities reported in the web browser.

The government agency cautions that a remote attacker could bypass security restriction and execute arbitrary code.(Photo by Kaur Kristjan on Unsplash)
The government agency cautions that a remote attacker could bypass security restriction and execute arbitrary code.(Photo by Kaur Kristjan on Unsplash)

CERT-IN cautioned in the vulnerability note, “Multiple vulnerabilities have been reported in Google Chrome for Desktop.” It added the flaws “could be exploited by a remote attacker to bypass security restriction, execute arbitrary code or cause denial of service conditions on the targeted system.”

Hindustan Times - your fastest source for breaking news! Read now.

CERT-IN is a statutory body under the Information Technology (Amendment) Act of 2008. This nodal agency under the Ministry of Electronics and Information Technology looks after computer security incidents, reports on susceptibilities and advocates powerful IT security practices throughout the country. It reports bugs and cybersecurity threats, including hacking and phishing attacks.

Which versions are affected and why?

CERT-IN has stated that the vulnerabilities are found on the desktop version of Google Chrome. The software running on updates prior to 105.0.5195.125 is said to be impacted.

As per the report, these flaws exist in Google Chrome for Desktop because of Use-after-free (arising from the operation of dynamic memory allocation) in PDF and Frames. Along with this, the vulnerabilities also stem due to Out-of-bounds write in Storage, Heap buffer overflow in Internals and Insufficient validation of untrusted input in DevTools.

How would it influence the system ?

Using these vulnerabilities, the agency warns, a remote attacker could direct the users to malicious websites. It will give access of the system to the attacker, bypassing the security restrictions in place in the device. A remote hacker then could execute arbitrary code and launch a denial of service attack, making the system inaccessible to the original user.

The solution

Users should upgrade to the latest stable channel update available for Google Chrome desktop browser.

Unlock a world of Benefits with HT! From insightful newsletters to real-time news alerts and a personalized news feed – it's all here, just a click away!- Login Now! Catch all the Latest Technology Mobile, Gadgets,Tech News from India and around the world
SHARE THIS ARTICLE ON
Share this article
SHARE
Story Saved
Live Score
Saved Articles
Following
My Reads
Sign out
New Delhi 0C
Saturday, February 24, 2024
Start 14 Days Free Trial Subscribe Now
Follow Us On