Google Chrome Download Vulnerability

US-CERT Computer Emergency Readiness Team

US-CERT is aware of a vulnerability that affects the Google Chrome web browser. This vulnerability is due to a default configuration that allows files to be downloaded without prompting the user. In addition, downloaded files can be opened with a single click, which could allow a user to inadvertently open a malicious file.

US-CERT encourages users to enable the "Ask where to save each file before downloading" option within the "Minor Tweaks" tab in the browser preferences. Although this does not fix the underlying vulnerability, selecting this option will warn the user before files are downloaded. Users should still exercise caution when visiting and downloading items from untrusted websites.

US-CERT will provide additional information as it becomes available.

Read more: US-CERT Current Activity

The alerts are updated in real time as they are released.

The Antivirus Advice website
is a collaberation of users, engineers and technical writers to present explaniations of Internet Security threats. It is sponsored by the following companies whose staff contributed to these articles.
Nortons.com

Antivirus Depot