chrome browser security
11 Sep 2009

Exploiting Chrome and Opera’s inbuilt ATOM/RSS reader with Script Execution and more

Update: I missed pointing out the cutting edge research done by Robert Auger in this area back in 2006. [1,2]. Also, Michal Zalewski has written about the RSS and ATOM vulnerabilities in the comprehensive Browser Security Handbook. Definitely check these links out. ============================================= SECURETHOUGHTS.COM ADVISORY – CVE-ID : CVE-2009-3263 (Chrome) – Release Date : September

0 Read More