Tag Archives: jar

Firefox 2.0.0.10 released

Posted on November 27, 2007 by Fernando

Mozilla Corporation just released Firefox 2.0.0.10 which includes fixes against JAR uri attacks. This issue affected browsers that used Gecko engine, a quick check showed me that only K-meleon browser was also updated, however there are several Gecko based web … Continue reading →

Posted in English, Security, XSS | Tagged firefox, gecko, jar, mozilla, Security, XSS | Leave a comment

Firefox jar: Protocol Vulnerability

Posted on November 10, 2007 by Fernando

I just came across pdp’s finding jar protocol vulnerability on Mozilla Firefox, I think its a big issue, and the fact that it has been on bugzilla (#369814) for way more than ten fuck*ng days is not a good thing. … Continue reading →

Posted in English, Security, XSS | Tagged firefox, gecko, google, jar, mozilla, Security, XSS | 21 Comments

Google Vulnerability

Posted on September 24, 2007 by Fernando

Yesterday, I found a new Google.com XSS vulnerability that can be abused to steal information from Gmail accounts, I’ve done responsible disclosure of at least 3 vulns to Google, but since I haven’t got enough ‘motivation’, I’ll go full disclosure … Continue reading →

Posted in English, Security, XSS | Tagged google, jar, Security, XSS | 46 Comments

Tag Archives: jar

Firefox 2.0.0.10 released

Firefox jar: Protocol Vulnerability

Google Vulnerability

Archives

Meta