Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Windscribe
Login or Register to Hide ads and Accessing all features on the forum
Thread Rating:
  • 1 Vote(s) - 1 Average
  • 1
  • 2
  • 3
  • 4
  • 5
News Zero-Day Vulnerability Discovered in Tor Browser 7.x
#1
In The Name OF Allah
Al-Salam Alekum

[Image: 5eac4cd9-53af-4ffa-b651-543810c25dac.jpg]

Quote:While the latest version of the Tor browser is unaffected, Zerodium today issued an advisory via Twitter of a zero-day vulnerability in the Tor browser 7.x.

According to Zerodium, who buys and sells vulnerabilities in software, the browser is reported to have a serious vulnerability – a backdoor that leads to full bypass of Tor’s security protections. The NoScript browser extension is supposed to block all JavaScript at the “safest” security level, but the backdoor enables an attacker to execute malicious code even if the blocking extension is activated.
https://www.infosecurity-magazine.com/ne...overed-in/

It had been reproduced by @x0rz: https://gist.github.com/x0rz/8198e8e22b1...5c1232b795

Wa Salam Alekum
Rs
* Thankful to Allah *
Kurdy
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
Star News Can Vulnerability Scanning Replace Penetration Testing? News 0 170 08-30-2020, 02:08 AM
Last Post: News
Star News Vulnerability Volume Poised to Overwhelm Infosec Teams News 0 118 08-28-2020, 09:14 AM
Last Post: News
Star News Vulnerability Prioritization: Are You Getting It Right? News 0 850 08-10-2020, 07:33 PM
Last Post: News
Smile News Critical Vulnerability In Bisq Crypto Exchange Exploited For Some Users Mr.Kurd 0 347 04-10-2020, 02:46 PM
Last Post: Mr.Kurd
Rainbow News Vulnerability In WPvivid Backup Plugin Could Expose Files Of WordPress Sites Mr.Kurd 0 321 04-01-2020, 11:11 AM
Last Post: Mr.Kurd
Rainbow News Microsoft Alerts Users Of Zero-Day RCE Vulnerability In Windows 7 Under Active Exploi Mr.Kurd 0 395 03-26-2020, 09:03 AM
Last Post: Mr.Kurd
Thumbs Down News Slack Vulnerability Allowing Account Takeovers Mr.Kurd 0 306 03-17-2020, 08:11 PM
Last Post: Mr.Kurd
Exclamation News A vulnerability that Allows Hackers to Hijack Facebook Accounts Mr.Kurd 0 360 03-04-2020, 07:17 AM
Last Post: Mr.Kurd
Brick News OpenSMTPD Email Server Vulnerability Threatens Many Linux and BSD Systems Mr.Kurd 0 356 03-02-2020, 08:40 PM
Last Post: Mr.Kurd
Exclamation News Mozilla Firefox 73 Browser Update Fixes High-Severity RCE Bugs Mr.Kurd 0 436 02-12-2020, 09:10 PM
Last Post: Mr.Kurd



Users browsing this thread: 1 Guest(s)