Welcome to WebmasterWorld Guest from 54.166.5.230

Forum Moderators: incrediBILL

Message Too Old, No Replies

WebGL open to hackers in FF4, Chrome, Safari, Opera

The web is still not safe...

     
5:25 pm on May 11, 2011 (gmt 0)

Senior Member from US 

WebmasterWorld Senior Member tangor is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Nov 29, 2005
posts:7154
votes: 442


The US Computer Emergency Readiness Team is advising users of the Mozilla Firefox and Google Chrome browsers to disable a recently added graphics engine that can be exploited to take control of end user computers.

The web standard known as WebGL opens the browsers to serious attacks, including the remote execution of malicious code, independent research consultancy Context Information Security recently warned. The technology made its debut in version 9 of Chrome and was added to the recently released Firefox 4. WebGL is also present in builds of Opera and Apple's Safari.

[theregister.co.uk...]
Includes instructions to disable WebGL
12:01 am on May 12, 2011 (gmt 0)

Senior Member

WebmasterWorld Senior Member tedster is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:May 26, 2000
posts:37301
votes: 0


So far there is no exploit actually reported - just the apparent possibility ofan exploit. Here's the instructions for those who want to disable WebGL:

In Firefox 4, type "about:config" (minus the quotes) into the address bar and set webgl.disabled to true.

In Chrome, get to the command line of your operating system and add the --disable-webgl flag to the Chrome command. On a Windows machine, the command line would be "chrome.exe --disable-webgl"
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members