W3C home > Mailing lists > Public > public-html-bugzilla@w3.org > November 2012

[Bug 20034] canvas getImageData opens security whole for code

From: <bugzilla@jessica.w3.org>
Date: Wed, 21 Nov 2012 07:12:21 +0000
To: public-html-bugzilla@w3.org
Message-ID: <bug-20034-2486-oJpvkMdFBC@http.www.w3.org/Bugs/Public/>
https://www.w3.org/Bugs/Public/show_bug.cgi?id=20034

--- Comment #4 from Klaus Bertram <bertram@n-bis.de> ---
If you have some intrusion detection systems, virus scanner and so on they try
to find in every request signatures of possible code. That's one of the points
why exploit kits obfuscate and encrypt their code. With this it is not needed
any more and the images can come from any legal image library.

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
Received on Wednesday, 21 November 2012 07:12:23 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 21 November 2012 07:12:23 GMT