According to information from Valleywag, a security researcher today revealed to the ZDnet portal that the recently launched Google browser could expose users to malicious hacker attacks by allowing them to run files within the browser without any alert.
To demonstrate the failure, the researcher created a harmless demonstration which shows how the bait can be successfully done by putting Google Chrome to accidentally download and run a Java file without any notice.
According to experts, this trick is known as “carpet-bombing” and had been fixed in version 3.1.2 of Safari. Since Chrome is based on the old version 3.1 of the Apple browser, the vulnerability is present and active in Google Browser.
Although the problem is serious, for a user to be affected by the vulnerability it is necessary to enter potentially malicious websites. If your browsing is only through known websites, your security will not be affected.