Saturday, January 10, 2009

Security in Web browsers

Late last year the community EvilFingers revealed a number of known vulnerabilities in the Web browser Google Chrome as MetaCharacter URI ofuscation by which an attacker could manipulate the features of the browser and redirect requests, or mismanagement of library "chrome.dll" that helping "throw" the browser, among others. While it are a PoC, reflect the level of vulnerability of Web applications.

It seems that Google responded to the call and has launched, of the hand of Michal Zalewski, the Polish that revealed many of the vulnerabilities found in Internet Explorer and Firefox (Chrome also likely), a Safety Manual for browsers.

The manual explains a lot of security features that have the most common browsers and is an excellent reference material.

# Jorge Mieres

No comments: