Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-disclosure] Flashblock Bypass

from [Sowhat] Network Security [Permanent Link]
Subject: [Full-disclosure] Flashblock Bypass
Date: Fri, 25 Jul 2008 21:53:46 +0800 
Hi

I accidentally encountered a Flashblock bypass condition today.

For those who dont know what Flashblock it is,
"*Flashblock is an extension for the Mozilla, Firefox, and Netscape browsers
that takes a pessimistic approach to dealing with Macromedia Flash content
on a webpage and blocks ALL Flash content from loading. It then leaves
placeholders on the webpage that allow you to click to download and then
view the Flash content.* "

As stated by Philip Chee, the developer of Flashblock, "Flashblock is a
content blocker pure and simple. Flashblock is not
designed to improve your security at all.".

However, as the flash vulnerabilities become more prevalent,  Flashblock is
recommended to be used to for security purpose.
At least I know lots of security researchers are using  either Flashblock or
Noscripts to block flash.

OK, here comes the Demo:
For those who are using Flashblock with Firefox 3, Go to
http://secway.org/pr14/flashblock.htm

It does not work with FF2, as Philip commented:
"*Unless the embed identifies itself as a flash object in some way we
can't block it. On Firefox 2.0 we can block it because FX2 did some
mime type sniffing and silently added application/x-shockwave-flash
to the embed. Firefox 3.0 is stricter in avoiding mime-type sniffing*."

Anyway, Philip is right, *You can not rely on Flashblock to block all flash
and improve your security*.

Thanks
-- 
Sowhat
http://secway.org
"Life is like a bug, Do you know how to exploit it ?"

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [Full-disclosure] Flashblock Bypass, Sowhat <=
Previous by Date:  Re: [Full-disclosure] Vim: Insecure Temporary File Creation During Build: Arbitrary Code Execution, Robert Buchholz
Next by Date:  Secunia Research: RealPlayer SWF Frame Handling Buffer Overflow, Secunia Research
Previous by Thread:  [Full-disclosure] how to request a cve id?, xpzhang
Next by Thread:  Secunia Research: RealPlayer SWF Frame Handling Buffer Overflow, Secunia Research
Indexes:  [Date] [Thread] [Top] [All Lists]