2024-08-16 07:34:03
A dangerous error has been discovered in browsers on millions of computers around the world. This was reported by The Hacker News, Day.Az reports with reference to Lenta.ru.
The problem was described by specialists from the Israeli IT security company Oligo Security. According to experts, the vulnerability allows attackers to use local service addresses to organize attacks. The report says that this error has existed since 2006, meaning it has not been fixed for 18 years.
Experts explained that we are talking about IP addresses like 127.0.0.1, which are used to manage local services or access files stored on a computer. It turned out that certain websites can interact with services running on a local network and remotely execute arbitrary code.
The article notes that the problem, dubbed 0.0.0.0 Day, affects Google Chrome or Chromium, Mozilla Firefox, and Apple Safari browsers. The vulnerability is relevant for devices running macOS and Linux. It does not work on Windows, since IP addresses are blocked at the operating system level.
According to Oligo Security specialists, they reported the problem to developers of popular browsers. They promised to fix the error.