[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

New Firefox/TorBrowser 0day in the wild

Subject: New Firefox/TorBrowser 0day in the wild
From: skquinn at rushpost.com (Shawn K. Quinn)
Date: Tue, 29 Nov 2016 18:16:44 -0600
In-reply-to: <[email protected]>
References: <[email protected]>

On 11/29/2016 04:57 PM, Ben Mezger wrote:
> "This is an Javascript exploit actively used against TorBrowser NOW. It
> consists of one HTML and one CSS file, both pasted below and also
> de-obscured. The exact functionality is unknown but it's getting access to
> "VirtualAlloc" in "kernel32.dll" and goes from there. Please fix ASAP. I
> had to break the "thecode" line in two in order to post, remove ' + ' in
> the middle to restore it."
> 
> https://lists.torproject.org/pipermail/tor-talk/2016-November/042639.html

Does this do anything against non-Windows systems?


-- 
Shawn K. Quinn <skquinn at rushpost.com>
http://www.rantroulette.com
http://www.skqrecordquest.com

Follow-Ups:
- New Firefox/TorBrowser 0day in the wild
  - From: benmezger at autistici.org (Ben Mezger)
- New Firefox/TorBrowser 0day in the wild
  - From: guninski at guninski.com (Georgi Guninski)

References:
- New Firefox/TorBrowser 0day in the wild
  - From: benmezger at autistici.org (Ben Mezger)

Prev by Date: free speech champignons, Charlie Hebdo launches German language edition
Next by Date: Are there crypto discussions on this forum
Previous by thread: New Firefox/TorBrowser 0day in the wild
Next by thread: New Firefox/TorBrowser 0day in the wild
Index(es):
- Date
- Thread