IE, Opera, Mozilla, Firefox, Dialog Origin Spoofing Vulnerability

ronjor · Jun 21, 2005

Secunia Research has discovered a vulnerability in various browsers, which can be exploited by malicious web sites to spoof dialog boxes
Click to expand...

Less critical
Impact:Spoofing

Test on site.

Secunia

Bubba · Jun 21, 2005

ronjor said:

IE, Opera, Mozilla, Firefox,
Click to expand...

I seemed to not find the reference to IE in the Title....perhaps they changed it and the software it actually affects
Code:
[B]Software: [/B] 
Camino 0.x
Mozilla 1.7.x
Mozilla Firefox 0.x
Mozilla Firefox 1.x
Edit:
Found it....they made it a separate vulnerability advisory.

Microsoft Internet Explorer Dialog Origin Spoofing Vulnerability

puff-m-d · Jun 21, 2005

No Opera either....

ronjor · Jun 21, 2005

http://secunia.com/

How's that coffee this morning men?

Bubba · Jun 21, 2005

puff-m-d said:

No Opera either....
Click to expand...

They chose to not put it all in one advisory....but to break it out into other advisories.

Multiple Browsers Dialog Origin Vulnerability Test

What should you do?

Please view the appropriate Secunia advisory for information about how you can fix or mitigate the impact of this vulnerability. The Secunia advisories will be updated when the vendors issue patches.

View the Secunia advisory regarding your browser:
- Internet Explorer for Mac
- Internet Explorer
- Opera
- Safari
- iCab
- Mozilla / FireFox / Camino
Click to expand...

ronjor said:

How's that coffee this morning men?
Click to expand...

Fine here....appears you haven't had yours yet

puff-m-d · Jun 21, 2005

OK... found it...

I failed the test even tho I have done the solution they gave.... I have version 8.01 - the latest...

SSK · Jun 21, 2005

puff-m-d said:

OK... found it...

I failed the test even tho I have done the solution they gave.... I have version 8.01 - the latest...
Click to expand...

Although the javascript window will come up and say you failed the test, on my Opera 8.01 it showed that the window came from:

www.google.com.secunia.com

Instead of www.google.com

puff-m-d · Jun 21, 2005

SSK said:

Although the javascript window will come up and say you failed the test, on my Opera 8.01 it showed that the window came from:

www.google.com.secunia.com

Instead of www.google.com
Click to expand...

So I guess that my browser did not really fail , but I did because I did not pay attention to the window . I think there is a lesson to be learned there somewhere ...

Bubba · Jun 21, 2005

Perhaps I am missing something or attempting this in the wrong order....but if an IE user has Active script disabled....this supposed vulnerability does not work

Point being....Secunia almost always makes a comment concerning at least one solution....Disable Active Scripting Support....but not in this case.

If I view this page ....as the supposed 1st step(The user visits a malicious website) with Active script disabled....the below script is not able to execute....which means after that all bets are off.

<script language="JavaScript" type="text/javascript">
var o_height = 768;
var o_width = 1024;

if ( screen.width > 100 )
{
o_width = screen.width;
}

if ( screen.height > 100 )
{
o_height = screen.height;
}

function run()
{
if ( window.opera )
{
window.open('http://www.google.com.secunia.com/tests/origin_spoof.php', '_blank', 'height=1,width=1,left=3000,top=3000,resizable=no,scrollbars=no');
}
else
{
window.open('http://www.google.com.secunia.com/tests/origin_spoof.php', '_blank', 'height=1,width=1,resizable=no,scrollbars=no,left=' + ((o_width / 2) - 50) + ',top=' + ((o_height / 2) - 150) );
}
window.focus();
}
</script>
Click to expand...

SSK · Jun 21, 2005

puff-m-d said:

So I guess that my browser did not really fail , but I did because I did not pay attention to the window . I think there is a lesson to be learned there somewhere ...
Click to expand...

(the single biggest problem I have with computers is that I never take the time to RTFM )

Bubba said:

Perhaps I am missing something or attempting this in the wrong order....but if an IE user has Active script disabled....this supposed vulnerability does not work

Point being....Secunia almost always makes a comment concerning at least one solution....Disable Active Scripting Support....but not in this case.

If I view this page ....as the supposed 1st step(The user visits a malicious website) with Active script disabled....the below script is not able to execute....which means after that all bets are off.
Click to expand...

Yep, with scripting turned of in IE this exploit will not work. Its indeed strange Secunia has not posted a notice about this.

Mrkvonic · Jun 22, 2005

Hi,
Once again, PROXOMITRON.
Protected the computer for the last vulnerability.
Protected the computer this time again.
Proxo + Kye-U filter = very good condomized (safe) browsing.
Mrk

Rasheed187 · Jun 22, 2005

Does not work in Maxthon, the real address is shown: http://www.google.com.secunia.com/tests/origin_spoof.php

Log in or Sign up

IE, Opera, Mozilla, Firefox, Dialog Origin Spoofing Vulnerability

ronjor Global Moderator

Bubba Updates Team

puff-m-d Registered Member

ronjor Global Moderator

Bubba Updates Team

puff-m-d Registered Member

Attached Files:

PMD000185.jpg

SSK Registered Member

puff-m-d Registered Member

Bubba Updates Team

SSK Registered Member

Mrkvonic Linux Systems Expert

Rasheed187 Registered Member

Log in or Sign up

IE, Opera, Mozilla, Firefox, Dialog Origin Spoofing Vulnerability

ronjor Global Moderator

Bubba Updates Team

puff-m-d Registered Member

ronjor Global Moderator

Bubba Updates Team

puff-m-d Registered Member

Attached Files:

PMD000185.jpg

SSK Registered Member

puff-m-d Registered Member

Bubba Updates Team

SSK Registered Member

Mrkvonic Linux Systems Expert

Rasheed187 Registered Member

Useful Searches