Microsoft has punished Google this week by disclosing a vulnerability in the Chrome browser. The Redmond-based company in one of its blog articles covered the security of Google's browser and took the opportunity to talk about Chrome's security philosophy, along with enumerating and explaining its browser features , Where Microsoft was able to find a vulnerability in Chrome.
The statement, written by a security team member at Microsoft Jordan Rabbit, said that the Chrome browser uses the protection feature and isolation techniques designed to contain any malicious code. This vulnerability can be used to execute malicious code within the browser, and the vulnerability exists within the JavaScript engine , A giant software giant has reported a search for a problem that was corrected last month.
The company received a reward of US $ 7500 to find the gap, Microsoft indicated in the post that the EDGE browser is protected from the same kind of security threats, and criticized the Google on how it dealt with the correction process, and published Google source code for the reform process within GitHub site, before the official launch of the patch.
This means that hackers have had prior knowledge of the gap before the patch came to customers, and according to Microsoft, it gives enough time for the hackers to exploit the gap, and Google corrected the problem within a week in its beta versions of Chrome, but the fixed channel and the public remained at risk For nearly a month.
The software giant has seized the opportunity more than once to point out that it has secretly detected Chrome's errors and will continue to do so to strengthen its approach across the industry, while giant research is conducting security research regularly and exposing security problems in Microsoft software. That the products are corrected, this approach has angered Microsoft a lot.
The two companies have previously clashed over vulnerabilities and vulnerabilities. Google last year warned users of a serious security flaw in the Windows operating system but did so before Microsoft could issue a correction. Isolating Chrome should make your browser more flexible against similar threats that try to execute remote code.
ليست هناك تعليقات:
إرسال تعليق