c69's Browser Pit

Subscribe to RSS feed

Posts tagged with "security"

MS moves all Skype supernodes to own servers

Wednesday, May 2, 2012 8:48:39 PM

, , , ...

http://expertmiami.blogspot.com/2012/05/skype-does-away-with-random-supernodes.html
via arstechnica

No comments

XSS Defence 101

Wednesday, January 4, 2012 10:57:06 PM

, , , ...

https://www.owasp.org/index.php/XSS_(Cross_Site_Scripting)_Prevention_Cheat_Sheet
https://www.owasp.org/index.php/DOM_based_XSS_Prevention_Cheat_Sheet
https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)_Prevention_Cheat_Sheet

No comments

Nozzle / Zozzle - filtering hostile javascript on the fly

Monday, August 29, 2011 7:30:06 PM

, ,

Interesting project by microsoft. Main idea - "no matter how you hard you encode your code, you will need to decipher it eventually - so it will run, and here we will see it!". Very low overhead, very promising results.
http://research.microsoft.com/en-us/projects/nozzle/

p.s.: it has a subproject dedicated to finding out if the script was obfuscated or not, sounds nice for automated submission systems in app stores and so on.

No comments

Microsoft: WebGL Considered Harmful

Friday, June 17, 2011 4:01:30 PM

, ,

http://blogs.technet.com/b/srd/archive/2011/06/16/webgl-considered-harmful.aspx

  • Browser support for WebGL directly exposes hardware functionality to the web in a way that we consider to be overly permissive - The security of WebGL as a whole depends on lower levels of the system, including OEM drivers, upholding security guarantees they never really need to worry about before.
  • Browser support for WebGL security servicing responsibility relies too heavily on third parties to secure the web experience - Without an efficient security servicing model for video card drivers (eg: Windows Update), users may either choose to override the protection in order to use WebGL on their hardware, or remain insecure if a vulnerable configuration is not properly disabled. Users are not accustomed to ensuring they are up-to-date on the latest graphics card drivers. [...] In some cases where OEM graphics products are included with PCs, retail drivers are blocked from installing. OEMs often only update their drivers once per year, a reality that is just not compatible with the needs of a security update process.
  • Problematic system DoS scenarios - Modern operating systems and graphics infrastructure were never designed to fully defend against attacker-supplied shaders and geometry. [...] it will be possible for any web site to freeze or reboot systems at will.



Its nice to see that at least Microsoft is mature enough to not let a 3D hype threaten web landscape security. Hopefully, other vendors understand that too.

No comments

Facebook is the most appalling spying machine ever invented

Monday, June 6, 2011 7:00:48 AM

, ,

Connections between social networks and intelligence agencies of different kinda are not very new, but most people ignore it. Maybe, the hyped dude from tv can persuade people to listen and think:

Facebook in particular is the most appalling spying machine that has ever been invented. Here we have the world’s most comprehensive database about people, their relationships, their names, their addresses, their locations and the communications with each other, their relatives, all sitting within the United States, all accessible to US intelligence. Facebook, Google, Yahoo – all these major US organizations have built-in interfaces for US intelligence. It’s not a matter of serving a subpoena. They have an interface that they have developed for US intelligence to use.

Now, is it the case that Facebook is actually run by US intelligence? No, it’s not like that. It’s simply that US intelligence is able to bring to bear legal and political pressure on them. And it’s costly for them to hand out records one by one, so they have automated the process. Everyone should understand that when they add their friends to Facebook, they are doing free work for United States intelligence agencies in building this database for them.


http://rt.com/news/wikileaks-revelations-assange-interview/

p.s.: and do not forget, CIA is by far not the worst possible information collector wink so when you [plan] to use any social network site, think about it.

No comments

WebGL - A New Dimension for Browser Exploitation

Wednesday, May 11, 2011 7:14:33 PM

, ,

  1. A number of serious security issues have been identified with the specification and implementations of WebGL.
  2. These issues can allow an attacker to provide malicious code via a web browser which allows attacks on the GPU and graphics drivers. These attacks on the GPU via WebGL can render the entire machine unusable.
  3. Additionally, there are other dangers with WebGL that put users’ data, privacy and security at risk.
  4. These issues are inherent to the WebGL specification and would require significant architectural changes in order to remediate in the platform design. Fundamentally, WebGL now allows full (Turing Complete) programs from the internet to reach the graphics driver and graphics hardware which operate in what is supposed to be the most protected part of the computer (Kernel Mode).
  5. Browsers that enable WebGL by default put their users at risk to these issues.



http://www.contextis.co.uk/resources/blog/webgl/

WebGL is not yet ready for production, and hopefully more people will see it before 3D mania will force vendors rolling out untested features into the wild.

1 comment

Chrome pwned and commercial bot-kit for Mac

Wednesday, May 11, 2011 7:05:17 PM

,

The exploit shown in this video is one of the most sophisticated codes we have seen and created so far as it bypasses all security features including ASLR/DEP/Sandbox (and without exploiting a Windows kernel vulnerability), it is silent (no crash after executing the payload), it relies on undisclosed (0day) vulnerabilities discovered by VUPEN and it works on all Windows systems (32-bit and x64).

The exploit works on both Chrome versions 11.x and 12.x. It was tested with Chrome v11.0.696.65 and v12.0.742.30.


http://www.vupen.com/demos/VUPEN_Pwning_Chrome.php

new kit named the Weyland-Yutani BOT that is being marketed as the first of its kind to attack the Mac OS X platform.

The seller of this crimeware kit claims his product supports form-grabbing in Firefox and Chrome, and says he plans to develop a Linux version and one for the iPad in the months ahead. The price? $1,000, with payment accepted only through virtual currencies Liberty Reserve or WebMoney.


http://krebsonsecurity.com/2011/05/weyland-yutani-crime-kit-targets-macs-for-bots/

1 comment

Flash cookie online management tool from Adobe

Friday, April 1, 2011 5:52:02 AM

, , ,

There you can see a list of sites that left LSO 'super-cookies' for your active user, and delete them:
http://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager07.html

No comments

Chrome 8 fixes vulnerabilities and gives prizes

Thursday, January 13, 2011 1:34:23 AM

, , ,

Some russian guy Sergey Glazunov is robbing google:

We’re delighted to offer our first “elite” $3133.7 Chromium Security Reward to Sergey Glazunov. Critical bugs are harder to come by in Chrome, but Sergey has done it. Sergey also collects a $1337 reward and several other rewards at the same time, so congratulations Sergey!



Study well, kids, and you can be like him wink

http://googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html

No comments

no websockets for a while.. bug in dna

Friday, December 10, 2010 12:48:07 PM

, ,

both Opera and Firefox will disable WebSocket support, because the protocol has vulnerabilities by design:
http://annevankesteren.nl/2010/12/websocket-protocol-vulnerability

too bad sad

No comments

1 2 Next »

May 2013
M T W T F S S
April 2013June 2013
1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31

Browsers

Hire me! - at Freelance sites