Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerabilit

bugtraq

Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerabilit

To:	"pdp (architect)" <pdp.gnucitizen@googlemail.com>, bugtraq@securityfocus.com, security@mozilla.org
Subject:	Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerability
From:	Michal Zalewski <lcamtuf@dione.ids.pl>
Date:	Thu, 22 Feb 2007 14:33:38 +0100 (CET)
Cc:	full-disclosure@lists.grok.org.uk
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	bugtraq-list@securepoint.com
Delivered-to:	mailing list bugtraq@securityfocus.com
Delivered-to:	moderator for bugtraq@securityfocus.com
In-reply-to:	<6905b1570702220512i51bc09cdt493a48d78ce93182@mail.gmail.com>
List-help:	<mailto:bugtraq-help@securityfocus.com>
List-id:	<bugtraq.list-id.securityfocus.com>
List-post:	<mailto:bugtraq@securityfocus.com>
List-subscribe:	<mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list:	contact bugtraq-help@securityfocus.com; run by ezmlm
References:	<Pine.LNX.4.58.0702220046430.6282@dione> <6905b1570702211617k183d9260i9e00ed6f80accd73@mail.gmail.com> <Pine.LNX.4.58.0702220146180.6282@dione> <6905b1570702220512i51bc09cdt493a48d78ce93182@mail.gmail.com>

On Thu, 22 Feb 2007, pdp (architect) wrote:

> This vulnerability is cute but not very useful mainly because a lot of
> social engineering is required.

Well, very little trickery is required - having a person bookmark an
interesting page and then reopen it later on, while the browser is still
on its start page (or just about any other high-profile site), isn't that
unusual, and does not rely on an improbable set of circumstances, or the
user being particularly timid.

This problem is not that significant for a different reason - to affect a
small percentage of population, you'd need to invest some serious effort
into providing content and PR for the attack site. Spending several days
to steal GMail cookies from 1000 users is a waste of time when you can get
10000 rooted boxes in hours with a trojan horse e-mail.

So, yeah.

/mz

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Firefox bookmark cross-domain surfing vulnerability, Michal Zalewski Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerability, pdp (architect) Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerability, Michal Zalewski Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerability, pdp (architect) Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerability, Michal Zalewski <= Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerability, pdp (architect) Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerability, Daniel Veditz

Previous by Date:	Hasadya Raed, RaeD Hasadya
Next by Date:	JBrowser acces to admin/config files, sn0oPy . team
Previous by Thread:	Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerability, pdp (architect)
Next by Thread:	Re: [Full-disclosure] Firefox bookmark cross-domain surfing vulnerability, pdp (architect)
Indexes:	[Date] [Thread] [Top] [All Lists]