Closed Bug 1208051 Opened 9 years ago Closed 9 years ago

Block "speedfox" add-on version 1.2.78

Categories

(Toolkit :: Blocklist Policy Requests, defect)

Product:
Toolkit
Component:
Blocklist Policy Requests
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: Fallen, Assigned: jorgev)

Details

(Whiteboard: [qa-]) 

palant brought this to my attention, this review seems to be true: https://addons.mozilla.org/en-US/firefox/addon/speedfox/reviews/746094/

SpeedFox seems to be injecting ads into the page based on remote rules. One of the scripts says "RoyalAds", which is apparently associated with a well-known adware application.

Snippets:
http://dlbox.org/sp/JS.txt
http://dlbox.org/sp/JSS.txt

Version 1.2.78, which introduced the "feature", is now disabled. Nevertheless, a blocklist entry should likely be created in addition.
Note that the feature in question was masquerading as ad removal - supposedly it was using nsITraceableChannel to remove ads by doing search&replace based on remote rules. Of course, this functionality can be just as well be used to inject content, and that's what it is doing right now. The rules files have July 30 as modification date, I guess that before that they weren't injecting any ads in order to fool reviewers and people updating from the previous release.
ID: jid1-uabu5A9hduqzCw@jetpack
Assignee: nobody → jorge
Whiteboard: [qa-]
Target Milestone: --- → 44.1
Blocked: https://addons.mozilla.org/en-US/firefox/blocked/i1016

Thanks for bringing it up.
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → FIXED
Product: addons.mozilla.org → Toolkit
You need to log in before you can comment on or make changes to this bug.