[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] A Popup! In Mozilla!

To: Full Disclosure <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: [Full-Disclosure] A Popup! In Mozilla!
From: James Woodcock <spamtrap2@xxxxxxxxxxxxxxxx>
Date: Wed, 21 Jul 2004 14:13:09 +1000

This might seem like it should be going to a webdev list, but there's a possible security implication, so here goes;

http://2-spyware.com/file-cnfrm-exe.html

In Mozilla 1.5 and FireFox 0.9 with the pop-up blocker turned on, I get a pop-up! It's purporting to be an important notice from my Network Administrator - you'll probably recognise it;

http://2-spyware.com/images/2SPYRR1C.gif

Looking at the source of the page, I see that the pop-up is being generated by a <DIV> statement that comes after the closing </html> tag which - I thought - was supposed to indicate the end of the document.

Is a web browser supposed to be able to render code outside the <html></html> tags?

Using IE 6.0.2800.1106, on viewing the source, I find that the DIV statement that followed the closing </html> tag is now the last statement BEFORE the </html> tag. What gives?

James


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] A Popup! In Mozilla!
  - From: Duncan Hill
- Re: [Full-Disclosure] A Popup! In Mozilla!
  - From: Andrew Farmer
- Re: [Full-Disclosure] A Popup! In Mozilla!
  - From: Jesse Ruderman
- Re: [Full-Disclosure] A Popup! In Mozilla!
  - From: Xavier Beaudouin
- Re: [Full-Disclosure] A Popup! In Mozilla!
  - From: Dave King

Prev by Date: Re: [Full-Disclosure] telnet URL type used in exploit
Next by Date: Re: [Full-Disclosure] A Popup! In Mozilla!
Previous by thread: [Full-Disclosure] [SECURITY] [DSA 531-1] New php4 packages fix multiple vulnerabilities
Next by thread: Re: [Full-Disclosure] A Popup! In Mozilla!
Index(es):
- Date
- Thread