Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
Bug

Submission + - HTML5 storage bug exploitable in Chromium, Safari, Opera, and MSIE.->

Dystopian Rebel writes: A Stanford U comp-sci student has found a serious bug in Chromium, Safari, Opera, and MSIE. Feross Aboukhadijeh has demonstrated (safe link: http://feross.org/fill-disk/) that these browsers allow unbounded local storage. Aboukhadijeh has logged the bug with Chromium (https://code.google.com/p/chromium/issues/detail?id=178980) and Apple but couldn't do so for MSIE because "the page is broken" (see http://connect.microsoft.com/IE). Oops.

Firefox's implementation of HTML5 local storage is not vulnerable to this exploit.

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

HTML5 storage bug exploitable in Chromium, Safari, Opera, and MSIE.

Comments Filter:

Machines that have broken down will work perfectly when the repairman arrives.

Working...