Chaining Bugs to Exploit Browser Plug-Ins

Author: Dennis Fisher

December 17, 2010 2:49 pm

This video is a short demo of an attack that researcher Billy Rios developed to exploit a series of bugs in browser plug-ins. By chaining the vulnerabilities together, Rios is able to steal content from a victim’s machine. The slides containing the code for the attack are available on Rios’s blog.

This video is a short demo of an attack that researcher Billy Rios developed to exploit a series of bugs in browser plug-ins. By chaining the vulnerabilities together, Rios is able to steal content from a victim’s machine. The slides containing the code for the attack are available on Rios’s blog.

Suggested articles

Microsoft patch tuesday remote code execution

Microsoft Patch Tuesday Update Fixes 17 Critical Bugs

Remote code execution vulnerabilities dominate this month’s security bulletin of warnings and patches.

facebook silentfade ad malware

Years-Long ‘SilentFade’ Attack Drained Facebook Victims of $4M

Facebook detailed an ad-fraud cyberattack that’s been ongoing since 2016, stealing Facebook credentials and browser cookies.

Two 0-Days Under Active Attack, Among 120 Bugs Patched by Microsoft

One of the two zero-day bugs is rated ‘critical’ and is classified as a remote code-execution bug impacting Microsoft’s Internet Explorer.