lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
From: evilninja at gmx.net (evilninja) Subject: Re: Mozilla Firefox Certificate Spoofing -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Peter Besenbruch wrote: > This was fixed by the July 27 builds in both Firefox 0.9.2( or 1) and > Mozilla 1.7. The Mozilla 1.4 branch was also updated. i was not able to reproduce it in "Gecko/20040719 Firefox/0.9.1" either. all i get is the real https:// site and this in the JS log: Error: unterminated string literal Source File: Line: 1, Column: 17 Source Code: document.writeln('<body onload=document.close();break;> - -- BOFH excuse #175: OS swapped to disk -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBDTLiC/PVm5+NVoYRAiniAJ4mfLUGO6xXY416FdpUXrHNJxmPYQCghIpT 26nz7GNlQ5bD8M17Q11gFJU= =1s8C -----END PGP SIGNATURE-----
Powered by blists - more mailing lists