Google has released an emergency security update for the Chrome desktop web browser. The update fixes the seventh zero-day vulnerability that has been this year. The vulnerability could have allowed attackers to read sensitive app data. Let’s take a detailed look at this zero-day exploit!
A zero-day includes the vulnerability, exploit and attack. The vulnerability is a software vulnerability discovered by attackers before the developer has become aware of it. Because the developers are unaware, no patch exists for zero-day vulnerabilities, making attacks likely to succeed.
Whereas, the zero-day exploit is the method hackers use to attack systems with a previously unidentified vulnerability. The zero-day attack is the actual use of a zero-day exploit to cause damage to or steal data from a system affected by a vulnerability.
As per reports, the Google Chrome Zero-Day vulnerability is a type of confusion bug in the Chrome V8 Javascript engine that was discovered and reported to Google by analysts at Avast. Reports suggest that this particular exploit allows attackers to go through sensitive app data stored within the device.
Such an exploit can have access to a resource which would then later try to access the same resource with an incompatible base type, effectively confusing the system and resulting in out-of-bounds memory access.
Google recommends everyone update their web browsers as soon as possible! So follow the steps below to update the Google Chrome browser on your desktop!
For more technology news, product reviews, sci-tech features and updates, keep reading Digit.in.