Cross browser javascript vulnerability



It sounds like this vulnerability would take a great deal of user interaction, but cio-today is reporting on a browser vulnerability that affects pretty much every javascript enabled browser. According to Symantec …. “This issue is triggered by utilizing JavaScript ‘OnKeyDown’ events to capture and duplicate keystrokes from users,” and is a way that the attacker could scrape/log things that are typed in (bank information, passwords, etc.) Also, they say “In one scenario, a crafty programmer might be able to trick users into entering personal data into a seemingly secure field on an online payment form, giving the hacker access to anything typed within the field.”


They say it would take a fairly determined attacker and require LOT’s of typing from the user. So, sites that would require LOT’s of user input might be targetted.

Related Posts

Blog Traffic Exchange Related Posts
  • How do I find my IP address This is one that can be handy from time to time, trying to find your ip address. If you're on a lan there aren't too many ways to find your public ip within the operating systems software. However, under Windows if you go to, Start, Run and then type cmd......
  • Remote Tech Support using VNC (Ultravnc SC and x11vnc+wrapper script) Ok, some time back I'd done a writeup on UltraVNC SC, which is a nice customizable (windows version) VNC server that essentially let's someone doing remote support build their own downloadable .exe that runs and automatically tries to make a direct connection to a "listening" vnc viewer. It's good for......
  • Nasty Javascript attack possibilities There were demonstrations of some nasty javascript attacks at Black Hat as well (as if the wireless driver issues wasn't a big enough problem...) Javascript is a powerful language and can be used for many things, but in these demonstrations, it was used to track recently visited sites (by the......
Blog Traffic Exchange Related Websites
  • Tool Box Essentials pt 1 It does not matter where you are living, or whether you are renting or owning your home. If you have four walls as well as a roof, then you are eventually going to have something that requires repairing, installing or updating. Having the right tools makes all the difference in......
  • Finovate Startup 2009 Live Twitter I am attending Finovate Startup 2009. It is an action packed 1 day format which I belive will lend itself perfectly to a live twitter. Stay tuned it should be an amazing day. http://twitter.com/BlogTrafficExch In the break I have scheduled some talks with SimplFi, Mint, and Calendar Budget. I am......
  • Some Reasons The Firefox Browser Is So Good Why is Firefox so preferred? A plethora of reasons say why Firefox is continuing to become more popular: RSS reader"Firefox has an in-built RSS reader which allows users to stay recent with the content of their favorite blogs and Web sites; Better security"Firefox has proved more secure than Internet Explorer......
en.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site