Critical holes affecting anyone who uses a browser to surf the web.

Gary · Sep 17, 2008, 10:44:05

"two prominent security researchers have pulled a scheduled talk that was to demonstrate critical holes affecting anyone who uses a browser to surf the web.

Jeremiah Grossman and Robert "RSnake" Hansen say they planned to demonstrate serious "clickjacking" vulnerabilities involving every major browser during a presentation scheduled for September 24 at OWASP's AppSec 2008 Conference in New York. They canceled their talk at the request of Adobe, one of the developers whose software is vulnerable to the weakness, they say"

Full story courtesy of el reg here

Rik · Sep 17, 2008, 10:47:47

Life was simpler when all we had was ASCII.

Gary · Sep 17, 2008, 10:49:44

Quote from: Rik on Sep 17, 2008, 10:47:47
Life was simpler when all we had was ASCII.

maybe the evolution of the web will turn full circle, Rik

Rik · Sep 17, 2008, 10:53:58

I could see it happening. Better start practising my ASCII smileys <g>.

Gary · Sep 17, 2008, 10:56:54

Indeed Rik :-)

Sebby · Sep 17, 2008, 13:35:03

I think life was simpler before computers!

Rik · Sep 17, 2008, 15:02:42

It was, in many ways, Seb. Computers changed the pace of life quite markedly, and in some ways we've not yet adjusted to that.

somanyholes · Oct 01, 2008, 07:51:57

if you use firefox and noscript you can kill this threat by blocking iframe in the noscript settings. This is not a default setting.

general info here http://rcpmag.com/news/article.aspx?editorialsid=10247

Gary · Oct 01, 2008, 08:08:48

Trouble is So, not everyone knows how to use noscript

DarkStar · Oct 01, 2008, 11:14:26

This is being discussed over at Wilders, link:

http://www.wilderssecurity.com/showthread.php?t=221353

yet another good reason not to use IE,

Ian

Rik · Oct 01, 2008, 11:16:18

As if we needed one.

Sebby · Oct 01, 2008, 15:03:57