Kudos on the find and detailed write-up. I'm looking into this for a story and would now how critical or exploitable these flaws are. Which is the worst? Has Microsoft patched these bugs?
-
-
-
Hey, thank you. Worst case the bugs (first two) can lead to remote code execution by having a user simply visit a webpage. Meaning one could use it to install any program they like on the users computer. Best case scenario (second bug) I outline 7 possibilities in the writeup.
- Još 2 druga odgovora
Novi razgovor -
-
-
-
Works on my mobile Firefox browser. Please share browser version and OS. Also try using the following link where the CSS snowflakes effect is turned off.https://leucosite.com/Edge-Chromium-EoP-RCE/?q#qfestive …
- Još 2 druga odgovora
Novi razgovor -
-
-
-
Yes similar to the first vector. In that, top sites wasn't sanitized in IE. More of a Google web bug than chrome though. Nice catch :)
Kraj razgovora
Novi razgovor -
-
-
Came for the bugs, stayed for the snowing FX

-
Glad to see people enjoy that as much as I do :D
Kraj razgovora
Novi razgovor -
-
-
Hello, does your blog have an RSS feed? I would like to add it to https://github.com/simevidas/web-dev-feeds ….
-
Not currently, but since there is somewhat of a demand for it then I will work on one and ping you soon.
Kraj razgovora
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
