| To: | bugtraq@securityfocus.com |
|---|---|
| Subject: | Re: Re: Bypass phishing protection in Firefox / Opera |
| From: | zonafirefox@gmail.com |
| Date: | 29 Mar 2007 23:36:01 -0000 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | bugtraq-list@securepoint.com |
| Delivered-to: | mailing list bugtraq@securityfocus.com |
| Delivered-to: | moderator for bugtraq@securityfocus.com |
| List-help: | <mailto:bugtraq-help@securityfocus.com> |
| List-id: | <bugtraq.list-id.securityfocus.com> |
| List-post: | <mailto:bugtraq@securityfocus.com> |
| List-subscribe: | <mailto:bugtraq-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:bugtraq-unsubscribe@securityfocus.com> |
| Mailing-list: | contact bugtraq-help@securityfocus.com; run by ezmlm |
yes, this what you comment is another different failure and i've commented it in the following article: http://www.zonafirefox.net/2007/02/nueva-falla-en-el-filtro-anti-phishing.html By the way, i think this new way to bypass the phishing protection is some dangerous. Demostrations again (look at the code): http://zonafirefox.googlepages.com/prueba2.html http://zonafirefox.googlepages.com/prueba.html Firefox 2.0.0.3, Opera 9.10 and Opera 9.2b fails. IE7 has no problems. A single IFRAME / OBJECT can bypass phishing protection. More info: http://www.zonafirefox.net/2007/03/salteando-el-filtro-antiphishing-con-un.html http://www.zonafirefox.net/2007/03/salteando-el-filtro-antiphishing-con.html |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | FLEA-2007-0005-1: slocate, Foresight Linux Essential Announcement Service |
|---|---|
| Next by Date: | Mybb Change Password Vulnerability, security |
| Previous by Thread: | Re: Re: Bypass phishing protection in Firefox / Opera, bob |
| Next by Thread: | Re: Bypass phishing protection in Firefox / Opera, Łukasz Pilorz |
| Indexes: | [Date] [Thread] [Top] [All Lists] |