FacebookTwitter
Hatrack River Forum   
my profile login | search | faq | forum home

  next oldest topic   next newest topic
» Hatrack River Forum » Active Forums » Books, Films, Food and Culture » Firefox/Safari vulnerable to spoofing?

   
Author Topic: Firefox/Safari vulnerable to spoofing?
Beren One Hand
Member
Member # 3403

- posted      Profile for Beren One Hand           Edit/Delete Post 
OK fellow Firefox lovers, give this a try:

http://secunia.com/multiple_browsers_idn_spoofing_test/

My Firefox displayed the paypal site, but my IE did not. Did anyone else get similar results?

Here's a temporary fix to the problem:

http://forums.mozillazine.org/viewtopic.php?t=215178

[ February 11, 2005, 12:48 AM: Message edited by: Beren One Hand ]
Posts: 4116 | Registered: Apr 2002  |  IP: Logged | Report this post to a Moderator
Miro
Member
Member # 1178

- posted      Profile for Miro   Email Miro         Edit/Delete Post 
Safari seems to be vulnerable as well. That's a bit scary.
Posts: 2149 | Registered: Aug 2000  |  IP: Logged | Report this post to a Moderator
Papa Moose
Member
Member # 1992

- posted      Profile for Papa Moose   Email Papa Moose         Edit/Delete Post 
What's spoofing again? I can never keep these things straight....
Posts: 6213 | Registered: May 2001  |  IP: Logged | Report this post to a Moderator
Storm Saxon
Member
Member # 3101

- posted      Profile for Storm Saxon           Edit/Delete Post 
You have to close firefox and restart it for changes to take effect.

Thank you, Beren. [Smile]
Posts: 13123 | Registered: Feb 2002  |  IP: Logged | Report this post to a Moderator
Beren One Hand
Member
Member # 3403

- posted      Profile for Beren One Hand           Edit/Delete Post 
Papa Moose, from the Secunia link:

quote:
This window is serving content from Secunia.com, although the Address Bar says you are visiting: http://www.paypal.com/

This page could just as easily have been spoofed to look like a genuine PayPal page (or any other web site) asking you for e.g. usernames, passwords, credit card details, or contain malicious information convincing you to install programs.

Exploitation is only limited by the imagination of the attacker (phisher).


[ February 11, 2005, 12:57 AM: Message edited by: Beren One Hand ]
Posts: 4116 | Registered: Apr 2002  |  IP: Logged | Report this post to a Moderator
quidscribis
Member
Member # 5124

- posted      Profile for quidscribis   Email quidscribis         Edit/Delete Post 
Oh, I saw that a while ago and already fixed mine. I should have posted that here, now that I think about it. Ooops!
Posts: 8355 | Registered: Apr 2003  |  IP: Logged | Report this post to a Moderator
Beren One Hand
Member
Member # 3403

- posted      Profile for Beren One Hand           Edit/Delete Post 
Quidscribis, I usually don't post tech stuff here either. But I've told so many people here to try Firefox that I feel like I should give them a heads up about this. [Smile]
Posts: 4116 | Registered: Apr 2002  |  IP: Logged | Report this post to a Moderator
Papa Moose
Member
Member # 1992

- posted      Profile for Papa Moose   Email Papa Moose         Edit/Delete Post 
Ok. Doesn't work in mine -- I got a DNS error page, and the address said http://www.payp?l.com/ (and we all know PayPal is https: anyway, right?). Alas, my computer's vulnerabilities must lie elsewhere.
Posts: 6213 | Registered: May 2001  |  IP: Logged | Report this post to a Moderator
Goody Scrivener
Member
Member # 6742

- posted      Profile for Goody Scrivener   Email Goody Scrivener         Edit/Delete Post 
Thanks for posting this. I've followed the fix instructions and now that site is blocked. =)
Posts: 4515 | Registered: Jul 2004  |  IP: Logged | Report this post to a Moderator
Dagonee
Member
Member # 5818

- posted      Profile for Dagonee           Edit/Delete Post 
I was vulnerable. Just installed the fix - thanks!
Posts: 26071 | Registered: Oct 2003  |  IP: Logged | Report this post to a Moderator
ketchupqueen
Member
Member # 6877

- posted      Profile for ketchupqueen   Email ketchupqueen         Edit/Delete Post 
It says "www.payp?l.com" in my bar, but displays only a blank page. Am I vulnerable or not? *is stupid*
Posts: 21182 | Registered: Sep 2004  |  IP: Logged | Report this post to a Moderator
Beren One Hand
Member
Member # 3403

- posted      Profile for Beren One Hand           Edit/Delete Post 
I think that means you're ok. [Smile]
Posts: 4116 | Registered: Apr 2002  |  IP: Logged | Report this post to a Moderator
   

   Close Topic   Feature Topic   Move Topic   Delete Topic next oldest topic   next newest topic
- Printer-friendly view of this topic
Hop To:


Contact Us | Hatrack River Home Page

Copyright © 2008 Hatrack River Enterprises Inc. All rights reserved.
Reproduction in whole or in part without permission is prohibited.


Powered by Infopop Corporation
UBB.classic™ 6.7.2