BleepingComputer.com: Firefox vulnerable to XUL content

Jump to content

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Firefox vulnerable to XUL content

#1 User is offline   raw 

  • Bleeping Hacker
  • PipPipPipPipPipPip
  • Find Topics
  • Group: BC Advisor
  • Posts: 2,299
  • Joined: 14-April 04
  • Gender:Male
  • Location:Texas

Posted 01 August 2004 - 02:13 PM

Well we knew it wouldn't be long before the widely popular browser became a target for bad guys.

Quote

Mozilla Firefox allows remote sites to render XUL content that
mimics the browser's user interface.  Using Javascript, the real
interface can be turned off and replaced with fake UI components.


http://www.nd.edu/~jsmith30/xul/test/spoof.html

Click on Firefox versions 0.9.0 - 0.9.2

This will NOT harm your browser or computer.
Posted Image
Posted ImageHOSTFix only works on XP,no longer maintained

#2 User is offline   HuckerJ 

  • Forum Regular
  • PipPipPip
  • Find Topics
  • Group: Members
  • Posts: 189
  • Joined: 11-April 04
  • Location:East Tennessee

Posted 04 August 2004 - 03:02 PM

Well, they didn't fix it in 0.9.3. :thumbsup: I thought it would be since one of the four bugs fixed was "lock icon and certificates spoofable with onunload document.write".
There are 10 kinds of people. Those who understand binary notation, and those who do not.
Posted Image - It plays, it streams, it kills WiMPs!!

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users