Hi!
A few days ago, when doing a Vulnerability scan with my Kaspersky IT security, I was warned multiple times by a critical vulnerability in Chrome impacting all versions BEFORE 58.0.3029.96. A step by step solution was not provided, just to update to the latest stable version. To quote their warning (one among many, because when I checked today, several warnings have been already removed but this one I could still find):
"Update to the latest version. File with name old_chrome can be still detected after update. It caused by Google Chrome update policy which does not remove old versions when installing updates. Try to contact vendor for further delete instructions or ignore such kind of alerts at your own risk."
The whole description can be found under the link:
KLA11015 RACE CONDITION VULNERABILITY IN GOOGLE CHROME
The impact (or exploit there) is shown to be: ACE - Arbitrary Code Execution (though others were also mentioned in the posts, which I can't find today anymore);
This is way above my level of knowledge, but I just wanted to ask, if Anti-Exploit Beta can block this and similar threats.
I find this very important, because hundreds of millions of people are using this browser (including me), not knowing, that there are several critical vulnerabilities in it and no definitive solution is provided by Google.
I tried to attach a cropped screenshot from Kaspersky vulnerability report, that contains some info about which files in Chrome app are impacted by all this, but was unsuccessful (received error code -200)
Thank you in advance for a more detailed explanation and also a possible solution.
Regards.
Denis
