Hacker News new | past | comments | ask | show | jobs | submit login

> And after all that, all it can do is run a search query. It can't leak all your Gmail emails or exploit the local machine.

Doesn't that contradict the following?

> “However, because the IPC channel was exposed to JS directly in New Tab page, the XSS in Chrome’s NTP can be treated as the equivalent of renderer process RCE.”




Yes, but that IPC channel to the browser can only do anything useful if you find another exploit in the browser.

And the New Tab Page doesn't even have permissions to do much via that IPC channel, because its origin isn't equal to anything interesting.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: