[<prev] [next>] [day] [month] [year] [list]
Message-ID: <6905b1570609081302t18cdb642gc836bde5e009cff0@mail.gmail.com>
Date: Fri, 8 Sep 2006 21:02:03 +0100
From: "pdp (architect)" <pdp.gnucitizen@...glemail.com>
To: full-disclosure@...ts.grok.org.uk, bugtraq@...urityfocus.com,
webappsec@...urityfocus.com, petea@....edu
Cc:
Subject: Cross Context Scripting with Sage
Cross Context Scripting in Firefox Sage Extension.
http://www.gnucitizen.org/blog/cross-context-scripting-with-sage
This proves that Firefox Extensions can be as dangerous as random
flash or quicktime media files. Moreover, the POC provides a real
example of how RSS feed Hacking really works.
--
pdp (architect)
http://www.gnucitizen.org
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists