Forum Home | Search | I.M. | Profile | Directory | Active Topics | Calendar | Games

 
» Netwerkin! » Computer Related Forums » Software - Applications, Drivers, etc. » Opera, Firefox Bug Could Reveal Web Travels
 
Post New Topic  Post A Reply  
 
spacer
lars63
FuddyDuddy
Icon 1 posted    
Post A Reply Profile for lars63 Edit/Delete Post Reply With Quote Send New Private Message Back to Top IP Logged
A flaw in the way the Firefox and Opera browsers handle an image file could allow an attacker to see what Web sites a person has visited

The problem concerns how the two browsers handle a ".BMP," or bitmap, image file, according to an advisory written by Gynvael Coldwind of Vexillium.org, who posted a video illustrating the problem.


A malicious bitmap file can be created that pulls other information from the browsers' memory. Some of the information that can be captured is random, but at other times could be valuable, the advisory said.


"The harvested data contains various information including parts of other Web sites, users' favorites and history and other information," Vexillium.org said.


Using the "canvas" HTML (Hypertext Markup Language) tag supported by the browsers, an attacker can capture the data. Then, using JavaScript, the information can be sent to a remote server.


The flaw could also crash Firefox. The vulnerability affects Firefox 2.0.0.11 and previous versions of that browser as well as the beta version of Opera 9.50.

Linkage
Member # 166
Posts: 17309 		--------------------
Member: NAD&BTA
Your Friendly Neighborhood Quake Addict
 
- Printer-friendly view of this topic  
Post New Topic  Post A Reply Close Topic   Feature Topic   Move Topic   Delete Topic next oldest topic   next newest topic
Hop To:

Contact Us | Netwerkin.com

Join the Netwerkin Family!

Powered by Infopop Corporation
UBB.classic™ 6.6.2