Security News Microsoft Edge bug could be exploited to spill your emails to malicious sites

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Content source
https://www.welivesecurity.com/2018/06/22/microsoft-edge-bug-exploited-spill-emails-malicious-sites/
Since a patch for the flaw has already been released, users are well advised to make sure that they’re running the browser’s most recent version

22 Jun 2018 - 02:32PM

A Google developer has discovered a high-severity loophole that affected the Microsoft Edge web browser and, less so, Mozilla Firefox, and that could provide an attacker with access to the victim’s private information.

“[T]his is a huge bug. It means you could visit my site in Edge, and I could read your emails, I could read your Facebook feed, all without you knowing,” wrote Jake Archibald, who found the security hole by accident and went on to call it “Wavethrough”.

If exploited, the vulnerability, tracked under CVE-2018-8235, could enable a remote attacker to retrieve content from other tabs within the victim’s browser. This includes sites that require users to authenticate themselves.

Of the four major browsers, the security hole mainly affected Microsoft Edge. Having been alerted to the bug by Archibald, Microsoft rolled out a patch for it in its June 2018 Patch Tuesday update. As for Firefox, only beta versions were affected, and Mozilla rushed to squash the bug before it could bite the users of the stable Firefox version. Meanwhile, neither Safari nor Chrome were affected.

The bug’s guts

The flaw has to do with how browsers treat cross-origin requests to multimedia content. As noted by Bleeping Computer, the hole can be exploited when a malicious website uses service workers to load content inside an <audio> tag from another domain while simultaneously using the “range” parameter to fetch only a section of that file.

Browsers don’t always respond in the same way when loading files inside audio tags from other locations with the help of service workers, and a malicious website can fetch such content from another site unchecked.

Having lured a victim to visit such a site, the attacker could then effectively circumvent a browser safeguard known as CORS (Cross-Origin Resource Sharing) that should normally stop sites from gaining access to the contents of other sites.

Microsoft lists the hole as “a security feature bypass vulnerability that exists when Microsoft Edge improperly handles requests of different origins”.
Click to expand...
 
  • Like
Reactions: Der.Reisende, spaceoctopus, CyberTech and 5 others
You must log in or register to reply here.

Similar threads

[correlate]
    • Like
    • +Reputation
Security News Opera MyFlaw Bug Could Let Hackers Run ANY File on Your Mac or Windows
Replies
3
Views
1,165
Security News
Ink
Ink
Gandalf_The_Grey
    • Like
    • Thanks
Microsoft March 2023 Patch Tuesday fixes 2 zero-days, 83 flaws
Replies
10
Views
1,561
News Archive
upnorth
upnorth
upnorth
    • Like
    • Wow
    • +Reputation
Exploitable Microsoft Visual Studio Bug Opens Developers to Takeover
Replies
1
Views
1,176
News Archive
R3j3ct
R3j3ct

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top