http://299093.guestbook.onetwomax.de/ triggered an intruder detection alert in Norton Internet Security here, warning of a hight risk intrusion attack (HTTP_MSIE_DHTML_Edit_Ctrl_Attack) from 22.214.171.124. The firewall closed down the connections from that site for 30 minutes. No popup other than Norton Firewalls
describes the exployt - seems it's a phishing/spoofing attempt via a cross-domain vulnerability described at http://www.securiteam.com/windowsntfocus/5QP012KEVE.html Over to security component for evaluation
Assignee: general → dveditz
Component: General → Security
QA Contact: general → seamonkey
For me popups are blocked with Mozilla (incl. the plugin pref). But I see only normal window.open calls.
WFM, the ad server must've changed, and there's not enough detail here to fix anything. Please search for duplicate bugs before filing, we've got a lot on improving the popup blocker.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 14 years ago
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.