Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Chrome updates itself so how can it be insecure?

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
PSI

This thread has been marked as resolved.
silvatek Chrome updates itself so how can it be insecure?
Member 10th Jul, 2010 14:45
Ranking: 11
Posts: 51
User Since: 31st Aug, 2008
System Score: N/A
Location: UK
I don't understand why PSI keeps telling me that Chrome is insecure when Chrome itself tells me that it is up to date. For some reason, PSI keeps insisting on a complete reinstall of Chrome. I'm sure I end up with the same version number after the reinstall (but I can't be sure).

Post "RE: Chrome updates itself so how can it be insecure?" has been selected as an answer.
michaelsalis RE: Chrome updates itself so how can it be insecure?
Member 10th Jul, 2010 15:53
Score: 57
Posts: 141
User Since: 18th Feb 2009
System Score: 98%
Location: UK
hi

This is because it does not uninstall the old files.

Go to the Insecure tab in psi advanced, click on the + sign next to Chrome and it will open the folder where the old files are.

At the top of that window, click on applications and you should see 2 folders named google Chrome with a version number. Delete the oldest folder. Then empty the recycle bin and after a few moments psi will show all clear again.

--
Michael
Toshiba Satelite A660
Intel i7
Windows 7 Ultimate
IE9

Toshiba Equium Laptop
Intel Centrino Duo
Windows Vista Ultimate SP2
IE9
Was this reply relevant?
+4
-0
silvatek RE: Chrome updates itself so how can it be insecure?
Member 10th Jul, 2010 18:23
Score: 11
Posts: 51
User Since: 31st Aug 2008
System Score: N/A
Location: UK
So is an on-the-fly update different to running the installation program? And surely, even if old files are left over, they're not being used for anything so they're no harm.
Was this reply relevant?
+0
-0
ddmarshall RE: Chrome updates itself so how can it be insecure?
Dedicated Contributor 10th Jul, 2010 20:06
Score: 1211
Posts: 965
User Since: 8th Nov 2008
System Score: 98%
Location: UK
Try the pre-release of the next version and see if it categorises them as 'Zombie Files'

http://secunia.com/community/forum/thread/show/444...

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+1
-0
michaelsalis RE: Chrome updates itself so how can it be insecure?
Member 11th Jul, 2010 08:53
Score: 57
Posts: 141
User Since: 18th Feb 2009
System Score: 98%
Location: UK
hi

I far as I am concerned if the files are on your computer they constitute a risk that can be exploited, they are best removed. In addition why keep old unneccessary files on your computer filling up the hard drive when they are of no use.

--
Michael
Toshiba Satelite A660
Intel i7
Windows 7 Ultimate
IE9

Toshiba Equium Laptop
Intel Centrino Duo
Windows Vista Ultimate SP2
IE9
Was this reply relevant?
+4
-0
mogs RE: Chrome updates itself so how can it be insecure?
Expert Contributor 11th Jul, 2010 09:09
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Hello.
The version of Chrome that you are using can be found by clicking on the spanner....top right of the browser....and then clicking on About Chrome. It will then check for updates and confirm the version number. Make a note of it, and as advised previously, delete the older file, for reasons already outlined.
It might be worth noting here....in case you ever decide to change to the Beta or Dev version of Chrome....that Secunia does not monitor them. Regards

--
Was this reply relevant?
+1
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer