WebGL graphics technology creates browser and system risks, Microsoft warns

19 Jun

Last month, Context researcher James Forshaw warned that the WebGL 3D graphics standards, enabled by default in Firefox 4 and Google Chrome browsers, creates a browser vulnerability that allows an attacker to inject malicious code via the web browser, enabling attacks on the graphics processing unit (GPU) and graphics drivers.

In its blog, Microsoft said it found a number of security concerns with the WebGL graphics standards. First, browser support for WebGL exposes hardware to the web “in a way that we consider to be overly permissive.” This creates a vulnerability at the lower levels of the system, including OEM drivers. “Attacks that may have previously resulted only in local elevation of privilege may now result in remote compromise”, it said.


Read More

Leave a comment

Posted by on June 19, 2011 in webGL


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: