[Full-disclosure] Found a lot of sites exploiting Firefox URI vulnerability!!! - part 2
Daniel Veditz
dveditz at cruzio.com
Mon Aug 13 19:09:49 BST 2007
carl hardwick wrote:
> Found a lof of sites exploiting Firefox URI vulnerability!!!
Maybe I'm getting to these sites after they've been cleaned up, or maybe
I'm just missing it, but what exactly are they exploiting and how? I don't
see anything that looks like the recent announced Firefox URI problems (no
firefoxurl: URIs, no %00 or double-quotes in URIs). One site did try to
download a probably-malicious "codec.exe", but that was a simple
"location=" trick that works on any browser (a save dialog came up).
Full-Disclosure is hosted and sponsored by Secunia.