tags:

views:

149

answers:

4
+1  Q: 

How viruses get through browser to pc as JavaScript do not have much privileges ?

I would like to know how browser allow viruses to pass through to our computers. Response we receive is a text response.. Only executable thing in the response is JavaScript which does not have much privileges, what makes browser favor certain files to be passed to computer?

+3  A: 

Things like ActiveX controls allow native code to be executed on local machines with essentially full privileges. Most viruses propagate through known security holes in unpatched browsers and don't use Javascript directly.

Joey Robert  2009-10-13 18:45:26
+2  A: 

Browser bugs and misconfiguration can allow sites that should be in the "Internet" (secure) security zone execute code as if they were trusted. They can then use ActiveX components to install malware.

JacobM  2009-10-13 18:46:57
+2  A: 

The short list:

  1. Browser plugins. ActiveX* in general and Flash in particular are notorious for having holes.
  2. Buffer overflows. Forming either HTML pages or Javascript in a specific way can lead to being able to write anything you want into memory... which can then lead to remote execution.
  3. Other errors. I recall bugs in the past where the browser could be tricked into downloading files into a known location, then execute them.

*Google is working on expanding this particular kind of hole to other browsers with Native Client.

R. Bemrose  2009-10-13 18:52:26
Could #2 be elaborated? I'm curious...
J-P  2009-10-13 19:41:56
If you can craft some HTML in such a way as to confuse the HTML parser, it could work. Even JPGs in web pages had this vulnerability a few years ago because the Windows GDI library had it.
Kev  2009-10-13 20:09:48
I'd completely forgotten about the GDI bug. As I recall, that one hit all the major browsers on Windows.
R. Bemrose  2009-10-13 21:16:00
A: 

Exploiting software bugs. Commonly, when rendering images, interpreting html/css/javascript, loading ActiveX components or Flash files.

Once a bug is exploited, the procedure is to inject "shell code" (a chunk of native compiled code), into the process memory to get executed.

knoopx  2009-10-13 19:00:38

related questions

Make Browser Window Blink in Task Bar
Large File Download
Browser's Default CSS
Disable browser 'Save Password' functionality
What's the simplest way to decremement a date in Javascript by 1 day?
Browser scrollbar
Limitations of screen readers.
Version detection with Silverlight
Best way to fix CSS/JS drop-down problem in IE7 when page includes Google Map
Recommendations for browser add-on tools to help with development
Hyperlinks displaced on IE7
Building Standalone Applications in JavaScript
HTML differences between browsers
Browser Sync accross many machines
Getting selected text in a browser, cross-platform.
How to get PNG transparency working in browsers that don't natively support it?
Best WYSIWYG CSS editor?
Javascript events
Preferred way to use favicons?
IE6: To support or not to support.
Getting the text from a drop-down box
Other browsers
Drag and Drop to a hosted Browser control
How can I tell if a web client is blocking ads?
How can I determine a web user's time zone?