The porn-related images and videos that recently emerged on Facebook, could be the result of an xss vulnerability in a browser. According to Facebook, users were deceived into to javascript in their url bar to paste.
The cause of the flow to unwanted content would be a xss vulnerability in an unspecified web browser. Thus, it was possible to rogue javascript code to execute, allows Facebook. The users had to own the code in their url, and paste, says a spokesman compared to Mashable. Probably happened through an external survey. Facebook does not want to say which browser is vulnerable to the attacks, and also gave no details about the method used.
The linkspam would be no personal data are captured. Facebook to say that measures to the offensive display in the future to prevent. So are Facebook pages that the vulnerability to abuse, will be closed automatically. In addition, affected users with information about how they are making the same mistake in the future.
Thousands of Facebook users were doing this week to complain about a stream of acts of violence and porn-related images and videos in their news feeds. The offensive images and videos were for friends visible, but users could be the images themselves do not see. The alleged perpetrator has reportedly been identified, know ZDNet. Or he is part of Anonymous or 4Chan, as it was thought, is unknown. An indictment would now be prepared.