{"version":"1.0","provider_name":"Deskmodder.de","provider_url":"https:\/\/www.deskmodder.de\/blog","author_name":"Horst_bloggt","author_url":"https:\/\/www.deskmodder.de\/blog\/author\/horst_bloggt\/","title":"Chrome und Firefox: Exploit lie\u00df Facebook-Daten abgreifen","type":"rich","width":600,"height":338,"html":"<blockquote class=\"wp-embedded-content\" data-secret=\"3ze1LNDYqt\"><a href=\"https:\/\/www.deskmodder.de\/blog\/2018\/06\/02\/chrome-und-firefox-exploit-lies-facebook-daten-abgreifen\/\">Chrome und Firefox: Exploit lie\u00df Facebook-Daten abgreifen<\/a><\/blockquote><iframe sandbox=\"allow-scripts\" security=\"restricted\" src=\"https:\/\/www.deskmodder.de\/blog\/2018\/06\/02\/chrome-und-firefox-exploit-lies-facebook-daten-abgreifen\/embed\/#?secret=3ze1LNDYqt\" width=\"600\" height=\"338\" title=\"&#8222;Chrome und Firefox: Exploit lie\u00df Facebook-Daten abgreifen&#8220; &#8211; Deskmodder.de\" data-secret=\"3ze1LNDYqt\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\" class=\"wp-embedded-content\"><\/iframe><script type=\"text\/javascript\">\n\/* <![CDATA[ *\/\n\/*! This file is auto-generated *\/\n!function(d,l){\"use strict\";l.querySelector&&d.addEventListener&&\"undefined\"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!\/[^a-zA-Z0-9]\/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret=\"'+t.secret+'\"]'),o=l.querySelectorAll('blockquote[data-secret=\"'+t.secret+'\"]'),c=new RegExp(\"^https?:$\",\"i\"),i=0;i<o.length;i++)o[i].style.display=\"none\";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute(\"style\"),\"height\"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):\"link\"===t.message&&(r=new URL(s.getAttribute(\"src\")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener(\"message\",d.wp.receiveEmbedMessage,!1),l.addEventListener(\"DOMContentLoaded\",function(){for(var e,t,s=l.querySelectorAll(\"iframe.wp-embedded-content\"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute(\"data-secret\"))||(t=Math.random().toString(36).substring(2,12),e.src+=\"#?secret=\"+t,e.setAttribute(\"data-secret\",t)),e.contentWindow.postMessage({message:\"ready\",secret:t},\"*\")},!1)))}(window,document);\n\/\/# sourceURL=https:\/\/www.deskmodder.de\/blog\/wp-includes\/js\/wp-embed.min.js\n\/* ]]> *\/\n<\/script>\n","thumbnail_url":"https:\/\/www.deskmodder.de\/blog\/wp-content\/uploads\/2017\/03\/google-chrome-logo.jpg","thumbnail_width":2272,"thumbnail_height":1704,"description":"Gleich vorab: Der Fehler ist seit Google Chrome 63 und Mozilla Firefox 60 gefixt. Es besteht also kein Grund zu Panik. Trotzdem finde ich diese L\u00fccke bemerkenswert, da die Schwachstelle in einem CSS3-Feature bestand. Das Angriffs-Szenario ist kompliziert. Jedenfalls war&hellip;"}