Closed
Bug 1208051
Opened 9 years ago
Closed 9 years ago
Block "speedfox" add-on version 1.2.78
Categories
(Toolkit :: Blocklist Policy Requests, defect)
Toolkit
Blocklist Policy Requests
Tracking
()
RESOLVED
FIXED
44.1
People
(Reporter: Fallen, Assigned: jorgev)
Details
(Whiteboard: [qa-])
palant brought this to my attention, this review seems to be true: https://addons.mozilla.org/en-US/firefox/addon/speedfox/reviews/746094/ SpeedFox seems to be injecting ads into the page based on remote rules. One of the scripts says "RoyalAds", which is apparently associated with a well-known adware application. Snippets: http://dlbox.org/sp/JS.txt http://dlbox.org/sp/JSS.txt Version 1.2.78, which introduced the "feature", is now disabled. Nevertheless, a blocklist entry should likely be created in addition.
Comment 1•9 years ago
|
||
Note that the feature in question was masquerading as ad removal - supposedly it was using nsITraceableChannel to remove ads by doing search&replace based on remote rules. Of course, this functionality can be just as well be used to inject content, and that's what it is doing right now. The rules files have July 30 as modification date, I guess that before that they weren't injecting any ads in order to fool reviewers and people updating from the previous release.
Assignee | ||
Comment 2•9 years ago
|
||
ID: jid1-uabu5A9hduqzCw@jetpack
Assignee: nobody → jorge
Whiteboard: [qa-]
Target Milestone: --- → 44.1
Assignee | ||
Comment 3•9 years ago
|
||
Blocked: https://addons.mozilla.org/en-US/firefox/blocked/i1016 Thanks for bringing it up.
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → FIXED
Updated•8 years ago
|
Product: addons.mozilla.org → Toolkit
You need to log in
before you can comment on or make changes to this bug.
Description
•