Note: There are a few cases of duplicates in user autocompletion which are being worked on.

browser takeover/denial of service via data URI and HTTP authentication dialog

RESOLVED DUPLICATE of bug 1312243

Status

()

Core
Security
--
major
RESOLVED DUPLICATE of bug 1312243
9 months ago
9 months ago

People

(Reporter: vlad, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(3 attachments)

Created attachment 8804397 [details]
site image

This has started making the rounds... this site creates a ton of HTTP auth dialogs via iframes, which we display as modal dialogs on Windows.  This locks you entirely out of your browser; you can't even right-click close it on the task bar -- need to kill the process.  They also seem to constantly reload the URL that's requesting the auth, and we queue up each of those auth requests so that you get a constant stream of "Authentication Required" dialogs.  If you wait it out it seems to stop eventually, but only after cancelling a few dialogs.

I've attached the data URI and the decoded contents here.

Sample URL that redirects you to this data URL: hxxp://git.believinghx.bid/?id=KzEgKDg4OCkgMjY0LTg2MTY
Created attachment 8804398 [details]
takeover.txt
Created attachment 8804399 [details]
takeover-decoded.txt
Note -- Chrome is not affected because their auth dialogs are not modal.  Going to the URL returns a different URL on chrome, that just pops up an alert() with spew about "There was a dangerous try blah blah blah".  It keeps popping up the alert() [which is modal, still?!], but you can set "prevent this site from creating additional dialogs" and close the tab.
See Also: → bug 1312243

Updated

9 months ago
Status: NEW → RESOLVED
Last Resolved: 9 months ago
Resolution: --- → DUPLICATE
Duplicate of bug: 1312243

Updated

9 months ago
See Also: bug 1312243
You need to log in before you can comment on or make changes to this bug.