New
#1
Chrome, Firefox and More Open to Zero-Day Attack
Video Encoding Library Leaves Chrome, Firefox and More Open to Zero-Day AttackGoogle and Mozilla have patched a zero-day exploit in Chrome and Firefox, respectively. The zero-day exploit was being used by a commercial spyware vendor. The zero-day exploit could leave users open to a heap buffer overflow, through which attackers could inject malicious code. Any software that uses VP8 encoding in libvpx or is based on Chromium (including Microsoft Edge) might be affected, not just Chrome or Firefox.