dChan - Q Origins Project Archive

- 4chan
- 8chan/8kun
- Reddit
- BBSPink
- /a/
- /abcu/
- /aiproto/
- /alleycat/
- /animu/
- /asatru/
- /bmn/
- /christian/
- /civicrsturbo/
- /clt/
- /comms/
- /cow/
- /cuteboys/
- /cyoa/
- /d/
- /deepdigs/
- /dempart/
- /doughlist/
- /film/
- /gamergatehq/
- /gnosticwarfare/
- /hgg/
- /hivemind/
- /ipfs/
- /k/
- /mg/
- /midnightriders/
- /miku/
- /monster/
- /nep/
- /newsplus/
- /nofap/
- /pdfs/
- /pen/
- /philogeometric/
- /pnd/
- /pone/
- /pundit/
- /qnotables/
- /qrb/
- /qrmemes/
- /s/
- /t/
- /tech/
- /techbunker/
- /test/
- /truthlegion/
- /tv/
- /v/
- /vqc/
- /warroom/
- /wtp/
- /x/
- No drops in this thread.
- Time series visualizer

About this project

Just my 2 cents…

According to the training presentation provided by Snowden, EgotisticalGiraffe exploits a type confusion vulnerability in E4X, which is an XML extension for Javascript. This vulnerability exists in Firefox 11.0 – 16.0.2, as well as Firefox 10.0 ESR – the Firefox version used until recently in the Tor browser bundle. According to another document, the vulnerability exploited by EgotisticalGiraffe was inadvertently fixed when Mozilla removed the E4X library with the vulnerability, and when Tor added that Firefox version into the Tor browser bundle, but NSA were confident that they would be able to find a replacement Firefox exploit that worked against version 17.0 ESR.