Welcome to WebmasterWorld Guest from 54.145.166.96

Forum Moderators: incrediBILL

Message Too Old, No Replies

WebGL open to hackers in FF4, Chrome, Safari, Opera

The web is still not safe...

   
5:25 pm on May 11, 2011 (gmt 0)

WebmasterWorld Senior Member tangor is a WebmasterWorld Top Contributor of All Time 5+ Year Member Top Contributors Of The Month



The US Computer Emergency Readiness Team is advising users of the Mozilla Firefox and Google Chrome browsers to disable a recently added graphics engine that can be exploited to take control of end user computers.

The web standard known as WebGL opens the browsers to serious attacks, including the remote execution of malicious code, independent research consultancy Context Information Security recently warned. The technology made its debut in version 9 of Chrome and was added to the recently released Firefox 4. WebGL is also present in builds of Opera and Apple's Safari.

[theregister.co.uk...]
Includes instructions to disable WebGL
12:01 am on May 12, 2011 (gmt 0)

WebmasterWorld Senior Member tedster is a WebmasterWorld Top Contributor of All Time 10+ Year Member



So far there is no exploit actually reported - just the apparent possibility ofan exploit. Here's the instructions for those who want to disable WebGL:

In Firefox 4, type "about:config" (minus the quotes) into the address bar and set webgl.disabled to true.

In Chrome, get to the command line of your operating system and add the --disable-webgl flag to the Chrome command. On a Windows machine, the command line would be "chrome.exe --disable-webgl"
 

Featured Threads

Hot Threads This Week

Hot Threads This Month