Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Malicious Mozilla/Firefox/Thunderbird/Etc Extension

from [Todd Haverkos] Network Security [Permanent Link]
Subject: Re: Malicious Mozilla/Firefox/Thunderbird/Etc Extension
Date: Mon, 14 Jul 2008 17:31:47 -0500 
"Andrei Hanganu" <handrei@gmail.com> writes:


I have recently started work on a xpcom component for Firefox,
astonished i was by the fact that in an XPI archive file one can
include binary libraries (dll/so files) that get auto loaded in
firefox via a precise function prototype. The problem is that the code
in that component is allowed to do anything the user that runs firefox
has credentials to do.
Wham i am curious is if there have ever been reported malicious
mozilla extensions, and if besides the signing of the addon is there
any other way to protect from such addons.


I vaguely recall this in March:

http://blog.trendmicro.com/malicious-firefox-extensions/

and, more recently, there was a big deal made of issues with teh
updgrade mechanism:

http://arstechnica.com/news.ars/post/20060726-7360.html

I'm sure there are better links for these issues but these are what
came up in my traditional 20 seconds of search term creation.  :-) 

--
Todd Haverkos, LPT MsCompE
http://haverkos.com/

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Wired captive portal pen-test, Terry Cutler
Next by Date:  Re: Client DDoS requests, ideas?, Erin Carroll
Previous by Thread:  Re: Malicious Mozilla/Firefox/Thunderbird/Etc Extension, Steve Friedl
Next by Thread:  Re: Malicious Mozilla/Firefox/Thunderbird/Etc Extension, Alexandru Burciu
Indexes:  [Date] [Thread] [Top] [All Lists]