Issue metadata
Sign in to add a comment
|
No warning on downloading of file with cmd extension unlike batch file
Reported by
cs.anura...@gmail.com,
Apr 18 2017
|
||||||||||||||||||
Issue descriptionUserAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.133 Safari/537.36 Steps to reproduce the problem: 1. Chrome reports harmful file message on downloading of bat file but it misses to show the same message if the malicious file has cmd extension What is the expected behavior? On downloading file with cmd extension browser should show a warning to user like it does with bat file What went wrong? If user runs the cmd file then an attacker can take over victim system Did this work before? N/A Chrome version: 57.0.2987.133 Channel: stable OS Version: 10.0 Flash Version:
,
Apr 18 2017
Please close this. Not sure why my laptop stopped showing warning but on another computer warning are coming for cmd also
,
Apr 18 2017
".cmd" will show a warning from any new site, but once it shows up in your history before yesterday and you've clicked to download, it won't show a warning. That's probably what you ran into. Closing at your request.
,
Jul 26 2017
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||
Comment 1 by mea...@chromium.org
, Apr 18 2017Status: Assigned (was: Unconfirmed)