Closed Bug 272468 Opened 20 years ago Closed 20 years ago

Firefox gets a virus viewing this page

Categories

(Firefox :: General, defect)

Product:
Firefox
Component:
General
Platform:
x86
Windows 2000
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

()

Status:
VERIFIED INVALID

People

(Reporter: kingofearth.com, Assigned: bugzilla)

References

(
URL
)

Details

(Whiteboard: [sg:nse]) 

User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.5) Gecko/20041107 Firefox/1.0
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.5) Gecko/20041107 Firefox/1.0

When you go to any page on this site, my anti-virus detects a download virus.
The anti-virus is mcaffe

Reproducible: Always
Steps to Reproduce:
1.go to the site
Actual Results:  
Anti-virus told me of a virus

Expected Results:  
fix the exploit to stop the virus from being downloaded
The "virus" is actually javascript in the webpage, designed to attack
vulnerabilities in Internet Explorer. This was downloaded into your browser
cache as part of normal processing and there's no way to know malicious scripts
are present prior to downloading the web content.

If Firefox were vulnerable to this attack (JS/Nezew) you would be infected when
we processed the page whether or not we saved a copy in the cache. By saving a
copy your virus detector can warn you, letting you see what the problem is and
whether you might actually be vulnerable.
Group: security
Status: UNCONFIRMED → RESOLVED
Closed: 20 years ago
Resolution: --- → INVALID
Whiteboard: [sg:nse]
verified invalid

The download into the cache doesn't matter (it would be also already to late)
because this is no exploit that affects Firefox.
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.