HTML5 storage bug exploitable in Chromium, Safari, Opera, and MSIE.

Slashdot

+ - HTML5 storage bug exploitable in Chromium, Safari, Opera, and MSIE.-> 0

Submitted by Dystopian Rebel on Thursday February 28, 2013 @11:28AM

Dystopian Rebel writes "A Stanford U comp-sci student has found a serious bug in Chromium, Safari, Opera, and MSIE. Feross Aboukhadijeh has demonstrated (safe link: http://feross.org/fill-disk/) that these browsers allow unbounded local storage. Aboukhadijeh has logged the bug with Chromium (https://code.google.com/p/chromium/issues/detail?id=178980) and Apple but couldn't do so for MSIE because "the page is broken" (see http://connect.microsoft.com/IE). Oops.

Firefox's implementation of HTML5 local storage is not vulnerable to this exploit."
Link to Original Source

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

HTML5 storage bug exploitable in Chromium, Safari, Opera, and MSIE.

Load All Comments

Search 0 Comments Log In/Create an Account

Comments Filter:

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Old mail has arrived.

HTML5 storage bug exploitable in Chromium, Safari, Opera, and MSIE. More Login

HTML5 storage bug exploitable in Chromium, Safari, Opera, and MSIE.