Posted by Stefan Kanthak on Dec 09

Hi @ll,

the executable installers [°] of Google Chrome are vulnerable:

1. ChromeStandaloneSetup.exe and ChromeSetup.exe load and execute
a rogue/bogus/malicious CryptBase.dll (under Windows NT6.x)
from their “application directory” [‘].

For software downloaded with a web browser this is typically the
“Downloads” directory: see
<…