I remember a similar bug with gifs years ago. It was possible to embed html insi... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		debt on Feb 12, 2019 \| parent \| context \| favorite \| on: Android Phones Can Be Hacked Remotely by Viewing M... I remember a similar bug with gifs years ago. It was possible to embed html inside gif and browsers would actually render the html. It was great for stealing peoples sessions on forums using a malformed avatar.

DCoder on Feb 12, 2019 [–]

There was also the Windows Metafile mayhem [0].

[0]: https://en.wikipedia.org/wiki/Windows_Metafile_vulnerability

debt on Feb 12, 2019 | [–]

yes! that one was a doozy.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact