Threat Post

URL Parsing Bugs Allow DoS, RCE, Spoofing & More

Dangerous security bugs stemming from widespread inconsistencies among 16 popular third-party URL-parsing libraries could affect a wide swath of web applications. Eight different security ...
ITWire

Exploiting URL parsers: the good, the bad, and the inconsistent

COMPANY NEWS: URLs are in many ways the hub of our digital lives, our link to critical services, news, entertainment, and much more. Therefore, any security vulnerabilities with how browsers, ...
Computerworld

How to parse URLs, hash tags, and more from a tweet

Tweets come with all kinds of actionable elements inside them these days. Shortened URL’s, #hashtags, @replies, and the actual message body. When you’re consuming a list of tweets, it’s important to ...
techtimes

Security Bugs on Third-Party URL-Parsing Libraries Could Affect Several Web Apps | DoS Attacks, Leaks, and More

Researchers discovered URL-parsing bugs that could impact several web apps. The cybersecurity experts noticed some vulnerabilities borne out of inconsistencies from the affected libraries. They ...
Ars Technica

Bare URL mis-parsing

URLs that end in close parens ')' get automatically linked by the forum software, but without including the terminal paren in either the link target or the link text. This most noticeably breaks links ...
MacRumors

iOS 11 QR Code Vulnerability in Camera App Could Lead Users to Malicious Websites

A new vulnerability within iOS 11 was uncovered over the weekend, this time centering upon the QR code scanner in the iPhone camera app. With the new scanning feature in iOS 11, users can open the ...
InfoWorld

Don’t overlook URL fetching agents when fixing Heartbleed flaw on servers, researchers say

Website operators should assess their whole Web infrastructure when patching the critical Heartbleed flaw in OpenSSL, otherwise they risk leaving important components open to remote attacks, despite ...