CVE-2021-21193

Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Recent assessments: gwillcox-r7 at March 15, 2021 6:18am UTC reported: Reported as exploited in the wild at...

Security firm uses Twitter to disclose critical zero-day flaw in Tor Browser

By Waqas Zerodium, an infosec and premium zero-day acquisition platform tweeted about the flaw in Tor browser on Monday. The infamous exploit vendor and buyer/seller of popular software vulnerabilities, Zerodium has revealed a critical flaw in Tor browser software. According to a tweet posted by...

Tor Browser Zero-Day Exploit Revealed Online – Patch Now

Zerodium, the infamous exploit vendor that earlier this year offered $1 million for submitting a zero-day exploit for Tor Browser, today publicly revealed a critical zero-day flaw in the anonymous browsing software that could reveal your identity to the sites you visit. In a Tweet, Zerodium share...

TAILS Team Recommends Workarounds for Flaw in I2P

The developers of the TAILS operating system say that users can mitigate the severity of the critical vulnerability researchers discovered in the I2P software that’s bundled with TAILS with a couple of workarounds, but there is no patch for the bug yet. The vulnerability that affects TAILS is in...

Mozilla Confirms Critical Firefox Bug, Readies Fix

Mozilla is working on a patch for the recently disclosed critical bug in Firefox that has been exploited on at least one prominent Web site this week. The vulnerability in Firefox is being used by attackers in drive-by download attacks to install malware on victims’ machines. Mozilla’s security...