Chrome’s (restricted integrity level on Windows, seccomp-bpf on Linux) partially mitigated some exploits, but Silverlight’s native code execution could still escape (many sandbox escapes existed).
The collaboration between Microsoft and Google on this project marked one of the first times that rival companies had worked together to solve a technical challenge. The experience paved the way for future collaborations and demonstrated the power of community-driven development.
It uses the Internet Explorer rendering engine to load pages. Since IE was the last browser to officially support Silverlight, this allows the plugin to function within a Chrome window.
Even when Chrome did support NPAPI, Silverlight was a high-risk plugin:
Chrome’s (restricted integrity level on Windows, seccomp-bpf on Linux) partially mitigated some exploits, but Silverlight’s native code execution could still escape (many sandbox escapes existed).
The collaboration between Microsoft and Google on this project marked one of the first times that rival companies had worked together to solve a technical challenge. The experience paved the way for future collaborations and demonstrated the power of community-driven development.
It uses the Internet Explorer rendering engine to load pages. Since IE was the last browser to officially support Silverlight, this allows the plugin to function within a Chrome window.
Even when Chrome did support NPAPI, Silverlight was a high-risk plugin: