Techly NewsGet the app

Get the latest tech news

A privilege escalation from Chrome extensions (2023)


What's the worst thing a Chrome extension could do to you?

A good example of a sandbox escape is this bug reported by David Erceg, where insufficiently validated functions in chrome.debugger were abused to run code on chrome://downloads and open an exe on Windows. I think this type of bug is really interesting because it shows that vulnerabilities don't always come from simple mistakes; sometimes, decade-long design choices in massive and complex projects like Chrome/ChromeOS can be exploited in creative ways. It's pure chance that I managed to find this bug--the main part of which had been lying undetected for years--only a month or so after the introduction of new code that made it even more critical.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Chrome

Chrome

Photo of Chrome extensions

Chrome extensions

Photo of privilege escalation

privilege escalation

Related news:

News photo

Chrome's password manager will now auto-update your weak passwords

News photo

Google Is Baking Gemini AI Into Chrome

News photo

Google is bringing Gemini to Chrome so it can answer questions about your open tabs

« EXT4 For Linux 6.16 Brings A Change Yielding "Really Stupendous Performance"
Driverless Semi Trucks Are Here, with Little Regulation and Big Promises »