<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 TRANSITIONAL//EN">
<HTML>
<HEAD>
  <META HTTP-EQUIV="Content-Type" CONTENT="text/html; CHARSET=UTF-8">
  <META NAME="GENERATOR" CONTENT="GtkHTML/3.14.1">
</HEAD>
<BODY>
A WONDERFUL Firefox extension called noscript blocks this and many other types pf malware as long as the users don't fall into the ZoneAlarm Zone and allow anything that requests access.<BR>
<BR>
<TABLE CELLSPACING="0" CELLPADDING="0" WIDTH="100%">
<TR>
<TD>
Rodney Wise<BR>
<BR>
See where your personal information goes once you give it out.<BR>
http://pplrwise.blogspot.com
</TD>
</TR>
</TABLE>
<BR>
<BR>
On Sun, 2007-07-22 at 12:00 +0100, full-disclosure-request@lists.grok.org.uk wrote:<BR>
<BLOCKQUOTE TYPE=CITE>
    <BLOCKQUOTE>
        <TT><FONT COLOR="#000000">Firefox 2.0.0.5 flaw allows to steal the user's passwords</FONT></TT><BR>
        <BR>
        <TT><FONT COLOR="#000000">PoC here: <A HREF="http://www.heise-security.co.uk/services/browsercheck/demos/moz/pass1.shtml">http://www.heise-security.co.uk/services/browsercheck/demos/moz/pass1.shtml</A></FONT></TT><BR>
    </BLOCKQUOTE>
</BLOCKQUOTE>
<TABLE CELLSPACING="0" CELLPADDING="0" WIDTH="100%">
<TR>
<TD>
<BR>
</TD>
</TR>
</TABLE>
</BODY>
</HTML>