1461327 - [NSFW] porn page opens a window that can not be closed with a scam ad using password question

Status: RESOLVED DUPLICATE of bug 613785

(Core :: DOM: Core & HTML, defect, P3)

Description

[newpov]

User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0
Build ID: 20180503143129

Steps to reproduce:

Reproducible always in 1-3 minutes

1. go to [NSFW] http://redtube.com/
2. click on the video (start/pause it) and it will open an ad
3. sometimes the AD is a page that takes over your computer

this ad is a wegpage with URL like
"2h85nez.access-limit.bid/error-x048/Firefox/10/"

how ever just opening this page normally gives you same scam page but you can normally close it. The attack therefore is the way in which this URL is opened in popup.

Extension: AdBlock Plus 


Actual results:

The Ad page maximizes itself to fullscreen

It grabs focus by asking me to input site password (the username / password http access password).

When you ignore it, you are on a page that can not be closed.
You can escape from fullscreen by AFAIR Esc key or maybe clicking.

But...
- clicking the "x" on window
- clicking the window in taskbar -> close window
do nothing. It remains open.

Only way to get rid of it is to either
- kill firefox process
- find a working window, go to files > quit firefox

Firefox 60.0
Windows 10 64bit
Private mode active


Expected results:

The ad page should be closable

Comment 1

[newpov]

AdBlock plus was disabled on that page.

Enabling it seems to be a work around.

Comment 2

[Gingerbread Man]

(In reply to newpov from comment #0)
> It grabs focus by asking me to input site password (the username / password
> http access password).

Bug 613785
Bug 647010

Comment 3

[Johann Hofmann [:johannh]]

It sounds like we can dupe this to bug 613785 then. Please report the ad site to SafeBrowsing.