Slashdot Mirror

← Back to Stories (view on slashdot.org)

WebGL Poses New Security Problems

Posted by CmdrTaco on Tuesday May 10, 2011 @07:45AM from the but-this-time-its-in-three-dee dept.

Julie188 writes "Researchers are warning that the WebGL standard undermines existing operating system security protections and offers up new attack surfaces. To enable rendering of demanding 3D animations, WebGL allows web sites to execute shader code directly on a system's graphics card. This can allow an attacker to exploit security vulnerabilities in the graphics card driver and even inject malicious code onto the system."

3 of 178 comments (clear)

Min score:

Reason:

Sort:

Really? by internerdj · 2011-05-10 07:48 · Score: 4, Funny

I mean what could possibly be dangerous about allowing random websites to run hardware level code?
With record-setting speed and efficiency! by jeffb+(2.718) · 2011-05-10 07:49 · Score: 5, Funny

You can dedicate hundreds of threads to high-volume malware, while freeing up your CPU to maintain a smooth phishing experience!
Re:Glad I'm not using Binary Blob drivers by Anonymous Coward · 2011-05-10 08:13 · Score: 5, Funny

probably why he feels more secure!