[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Cross Context Scripting with Sage

To: full-disclosure@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx, webappsec@xxxxxxxxxxxxxxxxx, petea@xxxxxxx
Subject: Cross Context Scripting with Sage
From: "pdp (architect)" <pdp.gnucitizen@xxxxxxxxxxxxxx>
Date: Fri, 8 Sep 2006 21:02:03 +0100

Cross Context Scripting in Firefox Sage Extension.
http://www.gnucitizen.org/blog/cross-context-scripting-with-sage

This proves that Firefox Extensions can be as dangerous as random
flash or quicktime media files. Moreover, the POC provides a real
example of how RSS feed Hacking really works.

--
pdp (architect)
http://www.gnucitizen.org

Prev by Date: PHP 5.1.6 / 4.4.4 Critical php_admin* bypass by ini_restore()
Next by Date: Re: [Full-disclosure] Re: RSA SecurID SID800 Token vulnerable by design
Previous by thread: Re: PHP 5.1.6 / 4.4.4 Critical php_admin* bypass by ini_restore()
Next by thread: [SECURITY] [DSA 1172-1] New bind9 packages fix denial of service
Index(es):
- Date
- Thread