javascript exploit – WindowsTechs.com

Firefox Blocks Inline and Eval JavaScript on Internal Pages to Prevent Injection Attacks

Posted on October 15, 2019 by Swati Khandelwal

In an effort to mitigate a large class of potential cross-site scripting issues in Firefox, Mozilla has blocked execution of all inline scripts and potentially dangerous eval-like functions for built-in “about: pages” that are the gateway to sensitive … Continue reading Firefox Blocks Inline and Eval JavaScript on Internal Pages to Prevent Injection Attacks→

Microsoft Adds Support for JavaScript in Excel—What Could Possibly Go Wrong?

Posted on May 9, 2018 by Mohit Kumar

Shortly after Microsoft announced support for custom JavaScript functions in Excel, someone demonstrated what could possibly go wrong if this feature is abused for malicious purposes.

As promised last year at Microsoft’s Ignite 2017 conference, the co… Continue reading Microsoft Adds Support for JavaScript in Excel—What Could Possibly Go Wrong?→

A Simple JavaScript Exploit Bypasses ASLR Protection On 22 CPU Architectures

Posted on February 16, 2017 by Swati Khandelwal

Security researchers have discovered a chip flaw that could nullify hacking protections for millions of devices regardless of their operating system or application running on them, and the worse — the flaw can not be entirely fixed with any mere software update.

The vulnerability resides in the way the memory management unit (MMU), a component of many CPUs, works and leads to bypass the

Continue reading A Simple JavaScript Exploit Bypasses ASLR Protection On 22 CPU Architectures→