Security researcher Kris Kaspersky says he has plans to demonstrate how an attacker can exploit a flaw in Intel processors to remotely attack a computer using JavaScript or TCP/IP packets, regardless of what operating system the computer is running.
Kaspersky will demonstrate how such an attack can be made in a presentation at the upcoming Hack In The Box (HITB) Security Conference in Kuala Lumpur, Malaysia, during October. The proof-of-concept attacks will show how processor bugs, called errata, can be exploited using certain instruction sequences and a knowledge of how Java compilers work, allowing an attacker to take control of the compiler.
javascript or tcp/ip? pretty wide range of technologies… i think they mean java… either that or this whole article is bs… javascript would have to be on a per browser basis.
javascript isn’t executed by the OS though, its ran through the browsers javascript engine… The engine would have to be broken on every single browser if that was the case. Now if they are talking about java, that is OS independent, and can execute byte code. Two completely different technologies, you would think that a security research firm or whatever would know that…
Edit: read the article, im pretty sure they are talking about java and NOT javascript