All Questions
5 questions
0
votes
0
answers
100
views
What can be leaked using a browser extension where one of the extensions loads JavaScript from a remote site?
Can one remotely log my IP, browser history, and saved passwords?
I think the IP should be easily done if one of the extensions load a remote JavaScript to run in my browser. I'm not sure about other ...
- 157
4
votes
3
answers
4k
views
Is Firefox's new JavaScript support within PDF files a security concern?
Historically, we have learned that many security vulnerabilities and exploits have resulted from allowing document files to contain executable code, whether it be JavaScript, VBScript, another ...
- 3,174
2
votes
1
answer
620
views
Is JavaScript needed for browser code execution vulnerabilities?
Does JavaScript VM have to enabled in a vulnerable browser to exploit an arbitrary code execution bug?
There is a number of bugs in borwsers that don't seem to involve JavaScript. For example, CVE-...
- 161
12
votes
2
answers
16k
views
How does BeEF work and how can it be persistent?
BeEF - the browser exploitation framework. I think (thought) I had a basic working understanding of how it works. Recently, though, I was watching, this DEFCON talk, where a hacker used a man-in-the-...
- 223
2
votes
1
answer
332
views
How does this website prevent directing away from it
I'm using the latest version of Firefox with Ghostery and Adblock plus installed. This website somehow prevents navigation away from it. How does it do this and how can it be protected against?
I can'...
- 10.2k