sabreW4K3@lazysoci.al to Privacy@lemmy.dbzer0.comEnglish · 25 days agoAdult sites are stashing exploit code inside racy .svg filesarstechnica.comexternal-linkmessage-square25linkfedilinkarrow-up171arrow-down13cross-posted to: pulse_of_truth@infosec.pub
arrow-up168arrow-down1external-linkAdult sites are stashing exploit code inside racy .svg filesarstechnica.comsabreW4K3@lazysoci.al to Privacy@lemmy.dbzer0.comEnglish · 25 days agomessage-square25linkfedilinkcross-posted to: pulse_of_truth@infosec.pub
minus-squareReversalHatchery@beehaw.orglinkfedilinkarrow-up3·24 days agothat does not explain how does it happen when the svg appears on a page in firefox. firefox won’t try to open all embedded assets with the default file handler in the OS, it will directly use its built in tools to handle it.
that does not explain how does it happen when the svg appears on a page in firefox. firefox won’t try to open all embedded assets with the default file handler in the OS, it will directly use its built in tools to handle it.