Microsoft Uncovers Vulnerability in Google Chrome Plug-in for IE
Microsoft uncovers a vulnerability in a controversial Google plug-in for Internet Explorer that could be exploited to bypass cross-origin protections. Google patched the issue this week in an update.Microsoft researchers uncovered a flaw in the Google Chrome Frame plug-in for users of Internet Explorer. According to Google, which patched the problem Nov. 18 with an update, the vulnerability could be exploited to bypass cross-origin protections.
The plug-in-which injects Google Chrome's rendering engine into Internet Explorer-has been a source of controversy between Microsoft and Google in the past. In September, Microsoft warned that the plug-in made IE less secure, not due to any specific vulnerability, but rather the very idea of the plug-in itself.