Comments on: Firefox jar: Protocol Vulnerability

By: beford.org » Firefox 2.0.0.10 released

beford.org » Firefox 2.0.0.10 released — Tue, 27 Nov 2007 05:41:00 +0000

[...] Corporation just released Firefox 2.0.0.10 which includes fixes against JAR uri attacks. This issue affected browsers that used Gecko engine, a quick check showed me that only K-meleon [...]

By: BlogZilla » Falla "JAR:" per Firefox, XSS per Gmail

BlogZilla » Falla "JAR:" per Firefox, XSS per Gmail — Wed, 21 Nov 2007 10:14:52 +0000

[...] evidenziare che in rete è stato pubblicato un proof of concept che dimostra l’exploit di entrambe le problematiche in un attacco contro il popolare servizio [...]

By: Firefox JAR Vulnerability Continues — Link to Gmail POC « lucky13

Firefox JAR Vulnerability Continues — Link to Gmail POC « lucky13 — Mon, 19 Nov 2007 16:07:32 +0000

[...] JAR Vulnerability Continues — Link to Gmail POC November 19, 2007 Firefox jar: Protocol Vulnerability: According to pdp, this issue makes vulnerable to Cross-site scripting applications that allow [...]

By: Firefox aç???ndan Gmail k?r?labilir — Bili?imin do?ru adresi…

Mon, 19 Nov 2007 09:55:31 +0000

[...] Beford.org’a göre tehlike, Firefox’un ?u aç???yla birlikte, Gmail’in de bir tedbirsizli?inden kaynaklan?yor. Aç???n kullan?c?ya etkisi daha geni? olabilir, ancak ?u ana kadarki -haberimiz olan- en belirgin uygulamas? beford.org’nin sayfas?ndan. Denemek isterseniz o sayfadan http://beford.org/stuff/jarjarbinks.htm yazan ba?lant?ya t?klayabilirsiniz, biz burada o ba?lant?y? vermeyece?iz. Denedik ve… [...]

By: Firefox aç???ndan Gmail k?r?labilir | www.dahii.com

Firefox aç???ndan Gmail k?r?labilir | www.dahii.com — Mon, 19 Nov 2007 06:09:50 +0000

By: Ryan Naraine’s Zero Day mobile edition

Ryan Naraine’s Zero Day mobile edition — Sat, 17 Nov 2007 01:50:36 +0000

[...] The GMail proof-of-concept is available here. [...]

By: beford

beford — Fri, 16 Nov 2007 06:49:37 +0000

Luca: You should be able to read cookies, I didn’t try too hard but my first test with Gmail was a simple alert(document.cookies) and It worked.

By: XAM » Blog Archive » Luka w Firefoksie obejmuje u?ytkowników Gmail

XAM » Blog Archive » Luka w Firefoksie obejmuje u?ytkowników Gmail — Thu, 15 Nov 2007 01:52:05 +0000

[...] w Googleplex, prosz?c o dodatkowe informacje na temat wykorzystania tej luki. Na portalu beford.org mo?emy przeczyta? na temat sposobu w jaki luka mo?e zosta? wykorzystana w celu przej?cia listy [...]

By: ICMPECHO » Blog Archive » Firefox JAR: vulnerability - quick summary

ICMPECHO » Blog Archive » Firefox JAR: vulnerability - quick summary — Thu, 15 Nov 2007 00:22:44 +0000

[...] impact at GNUCitizen. This opens this bug up to a whole new audience and…2007-11-10 – Beford illustrates the seriousness of this issue and issues in the same family by targeting Google and Gmail and posts a new bug entry.2007-11-10 – And then Mario posts at [...]

By: Luka w Firefoksie obejmuje u?ytkowników Gmail | thecamels.org

Luka w Firefoksie obejmuje u?ytkowników Gmail | thecamels.org — Wed, 14 Nov 2007 21:48:06 +0000

[...] ?e spraw? zainteresowa? Micha? Zalewski. Obecnie pracuje on dla Googleplex. Na portalu beford.org znajduje si? opis sposobu w jaki luka mo?e zosta? wykorzystana do przej?cia listy kontaktów z [...]