| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: kiwi at oav.net (Xavier Beaudouin) Subject: A Popup! In Mozilla! Le 21 juil. 04, ? 06:13, James Woodcock a ?crit : > This might seem like it should be going to a webdev list, but there's > a possible security implication, so here goes; > > http://2-spyware.com/file-cnfrm-exe.html > > In Mozilla 1.5 and FireFox 0.9 with the pop-up blocker turned on, I > get a pop-up! It's purporting to be an important notice from my > Network Administrator - you'll probably recognise it; > > http://2-spyware.com/images/2SPYRR1C.gif > > Looking at the source of the page, I see that the pop-up is being > generated by a <DIV> statement that comes after the closing </html> > tag which - I thought - was supposed to indicate the end of the > document. This is not a popup as you think it is... It is plain <div></> html with html layers. In fact you have think it is a popup because it looks like a Windows XP dialog box. For example on other OS (OS X, Linux, W2k, .... whatever) you see that this dialog box is not from browser but a fake one... This kind of ads with layers are more and more common... See Lycos webhosting for example, all ads are shown like this... /Xavier -- Xavier Beaudouin - Unix System Administrator & Projects Leader. President of Kazar Organization : http://www.kazar.net/ Please visit http://caudium.net/, home of Caudium & Camas projects
Powered by blists - more mailing lists