FIXIT MENU:
home about us contact us

WHAT'S AVAILABLE:
free scripts advanced scripts online tools great books web related tutorials contributed tutorials news archive geek toys!

SUPPORT:
help forum live chat help



Selected article

RSS feed   enewsbar Live Subscribe    Add to MyYahoo    Add to Google

Other HTMLfixIT articles:




by Franki

Here is a pretty rare item, a security flaw that effects multiple browsers, in fact nearly all the popular ones in use today.
The affected browsers affected are:

Internet Explorer,
Pre 0.9 Firebird
Pre 1.6 Mozilla
Pre 7.51 Opera.
Safari 1.2.2
Konqueror 3.1


The problem with this one, occurs when you browse a secure web site, and an un trusted web site, in different browser windows at the same time.
Say for example your online banking, and some shady site you found in an e-mail.

The un trusted site, can inject contents into the other (trusted) frameset, so in the case of your online banking, it would allow the un trusted one to replace the banks login screen with one of their own creation that would give them your details.

I tested this on my system, with both my installed browsers Firefox 0.9 and IE6 (fully patched).
Firefox didn’t work, the problem was apparently fixed in 0.9, as it had no effect at all.
In IE6 however, it worked as advertised and I had a browser displaying Micro$ofts MSDN site, with another sites content displayed inside it.

You can read about the flaw at Secunia and if your curious, you can try the demo yourself here, just follow the directions.

So, if you’re a Mozilla or Opera user, just get the latest version of your browser, and if your an IE user, get the latest update of Firefox because the latest version of IE is still susceptible.
From what I have read, the newest builds of Konqueror have also dealt with the problem. Safari I don’t know about, as Apple is pretty close mouthed on security stuff unless it suits them to speak up.

Having said all of that, this is not really that big a deal, as it would be very hard for a malicious individual to actually use, as it requires knowledge that they don’t have. For example, how would they know what trusted site you were at? (if any) and then they need to know the frame name of the trusted site running on your machine. Oh and your trusted site needs to be using a frame layout, AND you have to have their page open at the time as well. So as you can see, while no flaw is good, and it’s good that most have already blocked this, it would be a pretty determined cracker that could actually benefit from this. Obviously the odds get allot better for the cracker if he/she knows you well.

regards

Franki








Comments are closed.







This site is totally free to use, you have absolutely no moral or legal obligations to help us continue.
There are however, some costs involved in running the site.

<random humor>
Plus Franki is trying to buy a bigger hard disk to support this site.
</random humor>

So if this site helped you find your way, perhaps you could consider contributing to our costs. Whatever amount you feel this site was worth to you would be just wonderful.
Use PayPal if you do decide to share and help us with the costs and in appreciation for our time and attention, or alternatively buy a book from our Bookstore..


  Time  in  Don's  part  of the world is:   November 22, 2024, 10:49 pm
  Time in Franki's part of the world is:   November 23, 2024, 11:49 am
  Don't worry neither one sleeps very long!



privacy policy :: support us :: home :: live chat help
contact us :: forum ::tutorials :: bookstore :: Site Map



      Valid XHTML 1.0!             powered by Apache Server
Pic 3 Pic 3

SEARCH:
USEFUL LINKS:

CIGHTML Firefox Thunderbird ClamWin WordPress SpyBot S&D TheGIMP Apache for Windows Registry Cleaners More cool stuff:

//-->

HTMLfixIT Site Stats.

Browser Statistics
Internet Explorer 85.88%
IE 717.63%
IE 62.3%
IE 50.00%
IE other8.6%
Moz Firefox 3.x3.03%
Moz Firefox 2.x0.18%
Moz Firefox 0.x/1.x26.65%
Netscape 8.x0.00%
NS 6+/Mozilla2.73%
Moz Seamonkey0.00%
K-meleon0.00%
Epiphany0.00%
Netscape 4.x0.00%
Opera 9.x0.00%
Opera 8.x0.00%
Opera 7.x0.42%
Opera 6.x0.00%
Opera other0.42%
Safari Mac/Intel5.21%
Safari Mac/PPC0.06%
Safari Windows25.2%
Google Chrome1.51%
Konqueror0.18%
Galeon0.00%
WebTV0.00%


Resolution Statistics
640 x 4800.25%
800 x 60026.14%
1024 x 76836.55%
1152 x 8640.25%
1280 x 80011.68%
1280 x 8540.00%
1280 x 102417.01%
1400 x 10500.00%
1600 x 12001.02%
1920 x 12007.11%
2560 x 10240.00%


OS Statistics
Windows 741.55%
Windows Vista2.4%
Windows 20033.91%
Windows XP20.86%
Windows 20000.36%
Windows NT40.05%
Windows 98/ME0.05%
Windows 950.00%
Linux/UNIX/BSD8.76%
Mac OSX8.03%
Mac Classic0.00%
Misc14.03%



New Windows Virus Alerts
also by sophos.

17 Apr 2011 Troj/Mdrop-DKE
17 Apr 2011 Troj/Sasfis-O
17 Apr 2011 Troj/Keygen-FU
17 Apr 2011 Troj/Zbot-AOY
17 Apr 2011 Troj/Zbot-AOW
17 Apr 2011 W32/Womble-E
17 Apr 2011 Troj/VB-FGD
17 Apr 2011 Troj/FakeAV-DFF
17 Apr 2011 Troj/SWFLdr-W
17 Apr 2011 W32/RorpiaMem-A

For details and removal instructions, click the virus in question.