have high hopes

Firefox defineGetter Issues.

By secgeeks - Posted on November 16th, 2007

Tagged:

1533

vote

I have high hopes for this research done by Gareth Heyes. It looks pretty bad what happens here. It is allowed to spoof different types of window attributes or objects, but also to abuse them cause interesting behaviorism in Firefox. Gareth showed me more, and I think this is going to turn out pretty bad, because it implies that you override almost anything that was set. But, Gareth also told me that he wasn't able to overwrite the document.location object. if that was the issue we could break the same origin policy and that would be one of the biggest vulnerabilities in Firefox so far. read more »

Recent blog posts

Newly Popular

Drupalit monthly

Drupalit weekly

Drupalit daily

Drupalit hottest

Drupalit latest

Recent comments

Problem solved!!!!
30 weeks 4 days ago
New version here
33 weeks 1 day ago
thanks for sharing.
1 year 1 week ago
links
1 year 2 weeks ago
Link to preplay
1 year 2 weeks ago
so now you are on linkedin
1 year 18 weeks ago
Outlook Email search tool
1 year 34 weeks ago
nice tool..
2 years 24 weeks ago
Preplay for windows
2 years 26 weeks ago
yeah,foxit is god
2 years 28 weeks ago

Get SecGeeks Feeds in your email:

Navigation

Who's online

There are currently 0 users and 9 guests online.

BlogRoll

Hack In The Box

http://maltainfosec.org
http://sipvicious.org/blog/
astalavista.com
Fake antivirus removal instructions

Partners

www.techmantras.com
Play Free Bingo at WikiBingo.co.uk
Find the latest Scratch Cards Games
Play bingo with no commitment-bingo winner.
Rent Sell Property
Post your Classified Ads for free
add your link here..