Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
CVE-2018-15685 – Electron WebPreferences Remote Code Execution
(
contrastsecurity.com
)
2 points
by
lvh
on Aug 24, 2018
|
hide
|
past
|
favorite
|
1 comment
lvh
on Aug 24, 2018
[–]
This is related to the recent disclosure about how open redirects in Google Chat can lead to RCE [0]. The bugs are related to security features not being correctly inherited across child windows (e.g. iframes).
[0]:
https://blog.bentkowski.info/2018/07/vulnerability-in-hangou...
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
[0]: https://blog.bentkowski.info/2018/07/vulnerability-in-hangou...