the link in question is http://obelix-ies.com/~gnaa/index.php
UserAgent: Opera/7.50 (Windows NT 5.1; U) [en]
HUGE Opera Security BUG
4 posts
• Page 1 of 1
HUGE Opera Security BUG
by GaryNiger » Tue 01 Jun, 2004 7:03 pm
I got fooled into clicking a link which allowed popups in opera even though I had popups disabled in preferences.
the link in question is http://obelix-ies.com/~gnaa/index.php
the link in question is http://obelix-ies.com/~gnaa/index.php
- GaryNiger
- new member
- Posts: 1
- Joined: Tue 01 Jun, 2004 7:01 pm
by bhtooefr » Wed 18 Aug, 2004 5:57 pm
Didn't click it (besides, I'm running Dillo right now), but if it's what I think it is, it's similar to Nero-Online's Last Measure. I dissected the source code for it (I used a NON-graphical browser to download it - the one I picked supported JavaScript, but it's quite tame about that).
What I found is that it's using the following:
Mousing over any of the images causes another one to pop up - defeats your popup blocker (unless it's set to block ALL popups), because it's an event that "you" caused, so Opera lets it through.
The windows have code to move around. This also helps the onMouseOvers do their job.
Control and Alt both fire up more windows (blocking Ctrl-F4 on MDI browsers like Opera or Moz, and Alt-F4 on all browsers).
On Internet Explorer (and maybe Moz), the titlebars are removed, so no clicking X.
On Internet Explorer, another page comes up that also moves around. It holds a (relatively) harmless Flash animation that displays the text "you are an idiot", and has smilies at the bottom. It flashes the whole time, and says in an annoying tone "YOU ARE AN IDIOT, HA HA HA HA HA HA HA!" repeatedly.
Disabling JavaScript will stop this one in it's tracks. So will blocking ALL popups.
What I found is that it's using the following:
Mousing over any of the images causes another one to pop up - defeats your popup blocker (unless it's set to block ALL popups), because it's an event that "you" caused, so Opera lets it through.
The windows have code to move around. This also helps the onMouseOvers do their job.
Control and Alt both fire up more windows (blocking Ctrl-F4 on MDI browsers like Opera or Moz, and Alt-F4 on all browsers).
On Internet Explorer (and maybe Moz), the titlebars are removed, so no clicking X.
On Internet Explorer, another page comes up that also moves around. It holds a (relatively) harmless Flash animation that displays the text "you are an idiot", and has smilies at the bottom. It flashes the whole time, and says in an annoying tone "YOU ARE AN IDIOT, HA HA HA HA HA HA HA!" repeatedly.
Disabling JavaScript will stop this one in it's tracks. So will blocking ALL popups.
UserAgent: Dillo/0.8.0
Don't be surprised by my UA flipping from Opera 7.5x Linux or Win, Netscape Communicator 4.8 Linux, Dillo 0.8.0, Mosaic 2.7b5 Linux, or Firefox 0.9 Win.
- bhtooefr
- junior member
- Posts: 23
- Joined: Tue 17 Aug, 2004 5:41 pm
by DJGM » Fri 01 Oct, 2004 5:05 pm
The page linked in the opening message is now no longer available, it just brings up a 404 error.
Since the now non-existant page that was apparently written to bypass the popup blocker
in Opera, has been removed, this alleged Opera security vuln effectively no longer exists.
Unless anyone casn persuade me otherwise, I've put this thread on lockdown . . . !
Since the now non-existant page that was apparently written to bypass the popup blocker
in Opera, has been removed, this alleged Opera security vuln effectively no longer exists.
Unless anyone casn persuade me otherwise, I've put this thread on lockdown . . . !
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.2) Gecko/20040804 Netscape/7.2 - DJGM.co.uk (ax)
SeaMonkey = Swiss Army Knife: It's versatile, reliable, and contains useful tools.
Windows Internet Explorer = Old Swiss Cheese: Full of holes, and it stinks!
Windows Internet Explorer = Old Swiss Cheese: Full of holes, and it stinks!
-
DJGM - diamond member
- Posts: 4572
- Joined: Wed 19 Jun, 2002 1:03 pm
- Location: Manchester, England, UK
4 posts
• Page 1 of 1
Who is online
Registered users: Google [Bot], Yahoo [Bot]
