[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: New possible scam method : forged websites using XUL (Firefox)

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: New possible scam method : forged websites using XUL (Firefox)
From: Kim Scarborough <kjs@xxxxxxxxxxxx>
Date: Tue, 03 Aug 2004 13:13:42 -0500

So I started to look for the "existing pref", and sure enough, if you
write
user_pref("dom.disable_window_open_feature.location", true);

in your prefs.js, the spoof looks much less convincing.

Small point: editing prefs.js is deprecated. That should go in user.js instead.

--
----------------------------------------------------------------------------
Kim Scarborough                                  Web Systems Administrator
University of Chicago/NSIT                       (773) 834-7740
----------------------------------------------------------------------------
Now listening to: Johnny Cash - "Would You Lay with Me (In a Field of Stone)"
----------------------------------------------------------------------------

References:
- Re: New possible scam method : forged websites using XUL (Firefox)
  - From: Marc
- Re: New possible scam method : forged websites using XUL (Firefox)
  - From: Peter J. Holzer
- Re: New possible scam method : forged websites using XUL (Firefox)
  - From: Peter J. Holzer

Prev by Date: [SECURITY] [DSA 535-1] New squirrelmail packages fix multiple vulnerabilities
Next by Date: CDE libDtHelp and dtlogin vulnerabilities on IRIX
Previous by thread: Re: New possible scam method : forged websites using XUL (Firefox)
Next by thread: Re: New possible scam method : forged websites using XUL (Firefox)
Index(es):
- Date
- Thread