Content from CNET tagged with

JavaScript [x] , security [x]

News Stories

Showing 1-17 of 17 results found

FAQ: JavaScript insecurities

July 29, 2006 JavaScript is playing a major role in the Web 2.0 boom, but increased use of the scripting language is raising security questions. TAGS: JavaScript, Web 2.0, AJAX, scripting language, Netscape Communications Corp., programming language, FAQ, attack, programming, worm, Sun Microsystems Inc., Java, security, Yahoo! Inc., Web browser, Google Inc.

JavaScript opens doors to browser-based attacks

July 28, 2006 Malicious code embedded in Web site can let miscreant map a home or corporate network, attack connected devices. TAGS: SPI Dynamics, JavaScript, corporate network, internal network, attack, AJAX, researcher, Web application, Web server, Web browser, scanner, server, security, programming, router, IP

Hackers claim zero-day flaw in Firefox

October 1, 2006 Mozilla is investigating hacker claims that the Web browser has a serious flaw in the way it handles JavaScript. Photos: Hackers outline possible Firefox crack TAGS: Mischa Spiegelmock, Andrew Wbeelsoi, flaw, hacker, JavaScript, Firefox, presentation, Mozilla Corp., vulnerability, Web browser, security, video

Yahoo Mail puts words in your mouth

July 17, 2002 Yahoo uses an automated filter to search e-mail and swap out a handful of words that pertain to Web code known as JavaScript. TAGS: Richard Smith, JavaScript, Yahoo! Inc., Yahoo! Mail, filter, MSN Hotmail, command, word, HTML, security, MSN, e-mail, password, message, Web browser

Meet Chrome, Google's shiny new browser

September 6, 2008 Search giant makes its long-awaited foray into Web browsers, but just how far can it ride its online dominance? TAGS: Stephen Shankland, NetSuite Inc., Sergey Brin, Google Chrome, co-founder, Microsoft Silverlight, Ina Fried, Google Inc., Web browser, JavaScript, extension, mobile phone, Mozilla Corp., Firefox, security, PC

The security risk in Web 2.0

July 28, 2006 Security has become a no-brainer for desktop software, but the same doesn't hold true for the booming world of Web applications. TAGS: AJAX, Web 2.0, XSS, Web application, expert, desktop software, Time Warner Inc., programming, MySpace, JavaScript, Yahoo! Inc., security, house, Google Inc.

Blog feeds may carry security risk

August 4, 2006 Popular RSS and Atom feeds could carry malicious JavaScript code that would compromise a PC, an expert warned. TAGS: RSS, SPI Dynamics, JavaScript, blog, mailing list, attacker, RSS feed, security, reader, PC

Web attackers get better at hiding

April 18, 2007 In cat-and-mouse game with security pros, cybercrooks are hiding malicious code in Flash animations and encoding it, expert says. TAGS: Jose Nazario, Flash animation, JavaScript, malicious code, attack, signature, security, Web browser, trojan horse, PC

JavaScript bug-hunting tool demonstrated

March 24, 2007 Security researcher says his company won't let him release Jikto, which turns PCs of unknowing Web surfers into crawlers. TAGS: SPI Dynamics, JavaScript, Web security, XSS, researcher, security, Web browser, PC

Microsoft, Mozilla downplay browser bug

June 8, 2006 Security flaw affecting both Internet Explorer and Firefox could allow an attacker to steal files from vulnerable computers, but is tough to exploit. TAGS: attacker, Mozilla Corp., JavaScript, vulnerability, Web browser, Firefox, security, Symantec Corp., Microsoft Internet Explorer, Microsoft Corp.

Security trips up instant messaging

May 13, 2002 Both MSN Messenger and AIM have had security holes uncovered recently, and experts say that Yahoo IM is requiring people to run with less security. What's going on? TAGS: Time Warner Inc., JavaScript, flaw, script, Yahoo! Inc., IM, security, Yahoo IM, MSN Messenger, America Online Inc., Symantec Corp., MSN, server, Web browser

PDF security risk greater than originally thought

January 5, 2007 Cybercrooks could create hostile links that offer full access to a victim's hard disk drive, experts warn. TAGS: SPI Dynamics, Adobe Acrobat Reader, Adobe Systems Inc., victim, Adobe PDF, JavaScript, Adobe Acrobat, attack, disk drive, expert, link, security, Web browser, PC, hard drive

Tool turns unsuspecting surfers into hacking help

March 21, 2007 With Jikto, JavaScript on a Web site can turn PCs into a bug-hunting tool, thus doing a hacker's dirty work. TAGS: Web security, JavaScript, Web surfer, attacker, hacking, SQL injection, hacker, creator, flaw, XSS, Web application, bot, vulnerability, SQL, researcher, security

Worm wriggles through Yahoo mail flaw

June 12, 2006 JavaScript flaw lets worm send itself to other Yahoo Web mail addresses when user merely opens the e-mail. TAGS: Yahoo! Inc., worm, Yahoo! Mail, Symantec Corp., flaw, advisory, JavaScript, patch, e-mail, antivirus, Microsoft Windows, Web browser, server, security

Hack lets intruders sneak into home routers

February 15, 2007 Ability to change the settings of poorly configured home routers could put home networks at risk of serious attack. TAGS: attacker, DNS, researcher, Cisco Systems Inc., Symantec Corp., router, password, Linksys, attack, D-Link Systems, JavaScript, Netgear, setting, security

Macworld crack offers VIP passes, hacker says

January 12, 2007 Security weakness in conference Web site apparently let enterprising hackers get free platinum passes to the event, a $1,695 value. TAGS: Macworld, pass, Steve Jobs, hacker, registration, event, priority, code, JavaScript, conference, security, Apple Computer

Google plugs Gmail data leak flaw

January 2, 2007 Security hole that affected several Google services exposed the address books of Gmail users, a potential treasure trove for spammers. TAGS: Gmail, address book, Google Inc., Google Video, vulnerability, object, JavaScript, security, video
Sponsored matches for "security"