Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
If you have some interesting news or want to throw up a link to discuss it, here's the place. Anything is okay, even shameless vendor launches (since that is often applicable to what we work on). 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Firefox bug exposes passwords
Date: November 21, 2006 09:44PM

http://it.slashdot.org/article.pl?sid=06/11/21/2319243

Says something about allow <form> elements in user-submitted content, hmm...

HTML Purifier - Standards Compliant HTML filtering

Options: ReplyQuote
Re: Firefox bug exposes passwords
Posted by: rsnake
Date: November 21, 2006 10:04PM

That's an old exploit, we've been talking about it for as long as the forums have been up and I've known about it for at least the last few years. It's weird people are suddenly interested in it. I always thought it was more of a bug than a real security hole. But I guess I've never been the type to store my username and password in a browser. :)

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: Firefox bug exposes passwords
Posted by: maluc
Date: November 21, 2006 10:36PM

heh, yeah when i saw the title in slashdot's feed i was hoping it was something new.. but alas, was disappointed

for people new to the forums (since the conversations about it kinda finalized) here's direct links:
http://ha.ckers.org/blog/20060821/stealing-user-information-via-automatic-form-filling/ Stealing User Information Via Automatic Form Filling
http://sla.ckers.org/forum/read.php?2,131 XSS abusing firefox password manager

-maluc

Options: ReplyQuote
Re: Firefox bug exposes passwords
Date: November 21, 2006 10:58PM

Hmm... I remember now...

At least the publicity the Slashdotting caused will compel the developers to make a fix.

Options: ReplyQuote
Re: Firefox bug exposes passwords
Posted by: WhiteAcid
Date: November 22, 2006 05:20AM

In a way I'm pissed that the guy hadn't done his research about previous people making PoCs, on the other hand I'm happy if the issue gets solved.

Don't forget our IRC: irc://irc.irchighway.net/#slackers
-WhiteAcid - your friendly, very lazy, web developer

Options: ReplyQuote
Re: Firefox bug exposes passwords
Posted by: Kyran
Date: November 22, 2006 05:53AM

From what I can tell, mid-October is the earliest anyone mentioned this or similar exploits. We've been talking about it since August.

So, are we on the cutting edge or is Slashdot being its usual, months behind the story again or both? Hahaha.

- Kyran

Options: ReplyQuote
Re: Firefox bug exposes passwords
Posted by: rsnake
Date: November 22, 2006 10:09AM

We are definitely on the cutting edge. I don't feel that bad about it though... at least if anyone does their homework they'll see we were definitely the first ones to talk about it.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: Firefox bug exposes passwords
Posted by: digi7al64
Date: November 22, 2006 09:14PM

It would seem everyone is jumping on the band wagon!

http://www.info-svc.com/news/11-21-2006/

Quote

11/21/2006 — Chapin Information Services (CIS) has discovered a new flaw in the Mozilla Firefox web browser that exposes saved passwords to clever attackers.

Given the new nature of this type of attack, CIS has named this a Reverse Cross-Site Request (RCSR) vulnerability.

This flaw could affect anyone visiting a weblog or forum website that allows user-contributed HTML codes to be added.

Quote

On 11/12/2006, CIS reported to Mozilla that the Firefox web browser will automatically fill saved usernames and passwords into such RCSR forms. This behavior does not occur in Internet Explorer unless the RCSR form appears on the same page as a legitimate login form.

Woah...

So i can use XSS to create a RCSR which i can then tag to a CSRF to create a XSS which i can use to RCSR which i can use to CSRF...

totally awesome.

i just can wait til someone starts talking about the idea of a "xss" worm with "lasers"... like a warhol worm,

I bet nobody has ever thought of that.

:(

----------
'Just because you got the bacon, lettuce, and tomato don't mean I'm gonna give you my toast.'



Edited 1 time(s). Last edit at 11/22/2006 09:14PM by digi7al64.

Options: ReplyQuote
Re: Firefox bug exposes passwords
Posted by: WhiteAcid
Date: November 23, 2006 09:26AM

http://www.theregister.co.uk/2006/11/23/fake_login_flaw/

Don't forget our IRC: irc://irc.irchighway.net/#slackers
-WhiteAcid - your friendly, very lazy, web developer

Options: ReplyQuote
Re: Firefox bug exposes passwords
Posted by: rsnake
Date: November 24, 2006 12:33AM

Funky. This really shouldn't have another name. It's not a reverse anything. It's just automatic form submission theft. Gah! One more dumb name to remember. While we're at it let's rename XSS to SoMXSS (same or maybe cross site scripting). Dumb.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote


Sorry, only registered users may post in this forum.