Skip to content
This repository has been archived by the owner on Feb 2, 2021. It is now read-only.

SecurityAdvisory20090323

Jump to bottom
Kevin Reid edited this page Apr 16, 2015 · 1 revision

(legacy summary: Security Advisory 23 March 2009)

Caja Security Advisory 23-Mar-2009

Ben Laurie of the Google Caja team found a serious flaw in Caja's source code translator, which would allow an attacker to bypass Caja's sandboxing mechanisms.

This is fixed in version r3349 and thereafter.

Impact

On versions of Caja prior to r3349 an attacker can completely bypass Caja's security mechanisms.

Advice

Upgrade to a version of Caja at or after r3349.

More Information

See http://code.google.com/p/google-caja/issues/detail?id=1002 for details of the attack and mitigation.

Thanks,

The Google Caja team.

Clone this wiki locally