funsec mailing list archives

Re: video showing a PC being infected

From: "Dude VanWinkle" <dudevanwinkle () gmail com>
Date: Tue, 3 Oct 2006 22:35:27 -0400

you too can learn from my mistakes:

http://news.com.com/Hacker+backpedals+on+Firefox+zero-day/2100-7349_3-6122317.html?tag=nl

A hacker who claimed to have found a serious zero-day bug in Firefox
now says he was never able to exploit the supposed vulnerability to
hijack computers.

On Saturday, Mischa Spiegelmock and Andrew Wbeelsoi told attendees at
the ToorCon event in San Diego that Firefox is critically flawed in
the way it handles JavaScript. An attacker could commandeer a computer
running the open-source Web browser simply by crafting a Web page that
contains some malicious JavaScript code, they said. They displayed
some of that code.
Hackers' presentation

But Spiegelmock has now backpedaled on those claims. In a statement
provided to Mozilla, which coordinates development of Firefox,
Spiegelmock said that the computer code displayed during the
presentation does not fully compromise a PC running the browser.

On 10/3/06, Rob, grandpa of Ryan, Trevor, Devon & Hannah
<rMslade () shaw ca> wrote:

From:                   "Les Bell" <lesbell () lesbell com au>
Date sent:              Wed, 4 Oct 2006 08:20:27 +1000

> Use the "video downloader" plugin for Firefox.:
> https://addons.mozilla.org/firefox/2390/ .

Tried that, no joy.  (It may be that YouTube has specifically fixed the tech that
allowed this.)

======================  (quote inserted randomly by Pegasus Mailer)
rslade () vcn bc ca     slade () victoria tc ca     rslade () computercrime org
Thus the metric system did not really catch on in the United
States, unless you count the increasing popularity of the nine
millimeter bullet.                                     - Dave Barry
Dictionary of Information Security  www.syngress.com/catalog/?pid=4150
http://victoria.tc.ca/techrev/rms.htm
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

video showing a PC being infected John LaCour (Oct 03)
- Re: video showing a PC being infected Rob, grandpa of Ryan, Trevor, Devon & Hannah (Oct 03)
  - Message not available
    - RE: video showing a PC being infected Rob, grandpa of Ryan, Trevor, Devon & Hannah (Oct 03)
  - Re: video showing a PC being infected Nick FitzGerald (Oct 03)
    - Re: video showing a PC being infected Ken Dyke (Oct 10)
    - Re: video showing a PC being infected Nick FitzGerald (Oct 10)
    - Re: video showing a PC being infected Ken Dyke (Oct 11)
- <Possible follow-ups>
- RE: video showing a PC being infected Les Bell (Oct 03)
  - RE: video showing a PC being infected Rob, grandpa of Ryan, Trevor, Devon & Hannah (Oct 03)
    - Re: video showing a PC being infected Dude VanWinkle (Oct 03)
    - Re: video showing a PC being infected Andrew Haninger (Oct 10)
    - Re: video showing a PC being infected Andrew Haninger (Oct 10)
- RE: video showing a PC being infected Alex Eckelberry (Oct 04)
  - Re: video showing a PC being infected Dude VanWinkle (Oct 04)
    - Re: video showing a PC being infected Dude VanWinkle (Oct 04)
- RE: video showing a PC being infected Alex Eckelberry (Oct 11)
  - Re: video showing a PC being infected Rob Thompson (Nov 10)