Skip to content

Home
About Us
A-Z Wiki
Contact Us
Blog Posts
Tech Newswire
Tech Tips

News Security Vulnerabilities

Security Vulnerabilities Fixed In Firefox 57.0.1

December 6, 2017 Duncan 358021 Views 0 Comments CVE-2017-7843, CVE-2017-7844, Firefox 57.0.1 0 min read

CVE-2017-7843: Web worker in Private Browsing mode can write IndexedDB data

When Private Browsing mode is used, it is possible for a web worker to write persistent data to IndexedDB and fingerprint a user uniquely. IndexedDB should not be available in Private Browsing mode and this stored data will persist across multiple private browsing mode sessions because it is not cleared when exiting.

CVE-2017-7844: Visited history information leak through SVG image

A combination of an external SVG image referenced on a page and the coloring of anchor links stored within this image can be used to determine which pages a user has in their history. This can allow a malicious website to query user history.
Note: This issue only affects Firefox 57. Earlier releases are not affected.

Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.

Share this:

Click to print (Opens in new window)
Click to share on Facebook (Opens in new window)
Click to share on Twitter (Opens in new window)
Click to share on LinkedIn (Opens in new window)
Click to share on Reddit (Opens in new window)
Click to share on Tumblr (Opens in new window)
Click to share on Pinterest (Opens in new window)
Click to share on Pocket (Opens in new window)
Click to share on Telegram (Opens in new window)
Click to share on WhatsApp (Opens in new window)
Click to email a link to a friend (Opens in new window)

Like this:

Like Loading...

Related Posts

Felismus Malware Written By The Sowbug Group
Ofcom Consultation On The 070 Number Range

Duncan

Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Search our site

Subscribe via Email

Enter your email address to subscribe to our site and receive new posts by email.

Email Address

Join 48 other subscribers.

IP Address Tools

Blog post categories

Blog post categories

Featured Posts

DAB Radio Reception Issues

How to fix voice distortion on Google Maps [RESOLVED]

What is Microsoft Patch Tuesday ?[RESOLVED]

The myths around 5G and COVID-19 - What is 5G ?

What Is GDPR And How Does It Effect You

What is Credential Stuffing ?

Smart Meters - Everything You Need To Know

How To Test A Remote Control With A Mobile Phone

What is the Google Password Checkup Tool [RESOLVED]

Avoid the fake voucher and offer Facebook pages

Top Tags

5G AI (Artificial Intelligence) Amazon Android Apache Apple Broadband BT Business Cisco Cryptocurrency Cyber attack Cyber Security Domain Name DoS Email Facebook Google Government Internet Linux Linux Kernel Malware Microsoft Microsoft Windows Mobile App Mobile Phone NHS Ofcom Phishing Emails Privilege Escalation Vulnerability Product Recall Ransomware Remote Code Execution Vulnerability Russia Scam Social Media Sophos Spam Technology Telecoms Trojan TV UK Government USA

RSS Feed

Untitled 1

Pages

Advertise With Us - About Us - Block Lists - Contact Us - Guest Blog Posts - Privacy Policy - Useful Links - Wiki -

Untitled 1

Topics

All News Story's - Security Alerts - Security News - Security Vulnerabilities - Technology Tips - Product Recalls - New Products - Space News - Social Media News - Domain Info - Telecoms News - TV News

Copyright © 1999 - 2024 SystemTek – Technology news and information. All rights reserved.

Loading Comments...

Write a Comment...

Email (Required)

Name (Required)

Website

%d