Closed
Bug 779014
Opened 12 years ago
Closed 12 years ago
Blocklist malicious "Adobe Flash Player 12.4.0" extension
Categories
(Toolkit :: Blocklist Policy Requests, defect)
Toolkit
Blocklist Policy Requests
Tracking
()
RESOLVED
FIXED
People
(Reporter: jorgev, Assigned: jorgev)
References
()
Details
Attachments
(1 file, 1 obsolete file)
6.84 KB,
application/x-xpinstall
|
Details |
I've received multiple reports about this add-on. It is distributed at http://www.peliculas-flv.com/ (currently down), and it tries to pass as a Flash Player installer. This add-on is using obfuscated remote scripts to conduct DDOS attacks against other video sites. The add-on id is {ec8030f7-c20a-464f-9b0e-13a3a9e97384}, which is the same ID as Firefox. I don't think this should be a problem, but I need QA to make sure.
Assignee | ||
Comment 1•12 years ago
|
||
The add-on is blocked on staging: https://addons-dev.allizom.org/en-US/firefox/blocked/i113 QA, please verify that the block works correctly once I post the XPI file.
Keywords: qawanted
Assignee | ||
Comment 3•12 years ago
|
||
I'm blocking this ID for all versions because people shouldn't be using the Firefox ID for their add-ons anyway.
Attachment #647406 -
Attachment is obsolete: true
Updated•12 years ago
|
QA Contact: jbecerra
Assignee | ||
Comment 4•12 years ago
|
||
We tested the staged block ourselves and it appears to be working correctly. The block is now live in prod: https://addons.mozilla.org/en-US/firefox/blocked/i115
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
No me queda nada más que decir que muchas gracias a todo equipo de Mozilla por habernos escuchado y tomado en cuenta nuestras quejas. A seguir usando el mejor navegador de todo y el más seguro.
Comment 6•12 years ago
|
||
I think that this block is going to stop a lot of "messed-up" add-ons (I've just found another one that uses the same ID of Firefox as the add-on id).
Comment 7•12 years ago
|
||
I've verified this in production. I've tested this by installing the XPI attached in this bug, installing the Timer Fire 1.6 extension, restarting, and firing the blocklist timer. When I fire the timer I get a dialog prompting me to restart Firefox indicating it has blocked the extension in question. When I restart it is disabled.
Keywords: qawanted
Hey guys, you also blocked the valid Adobe Flash plugin needed for virtually every website that carries video content... Who tests this stuff anyway? We all know Adobe hasn't released Flash 12.4 yet, the version you're blocking isn't limited to 12.4... You're also blocking the legit version 11.3., and I'm on a Mac, not a Winblows box.
Assignee | ||
Comment 9•12 years ago
|
||
No, we didn't block the Flash plugin with this block. This a malicious extension that uses the Adobe Flash name, but uses an id that has nothing to do with Adobe. I recommend that you go to our support site for help with this: http://support.mozilla.com/
Comment 10•12 years ago
|
||
I have just switched back to Firefox (from Chrome) and I believe think this blacklist has just blocked a legitimate add-on which I actively use for http://www.monsterdivx.com/ Please investigate.
Comment 11•12 years ago
|
||
Please re-open ticket.
Assignee | ||
Comment 12•12 years ago
|
||
I don't know if the add-on distributed on that website is the same being blocked here. However, as noted in comment #0, the id corresponds to the Firefox application id, which is wrong for any add-on to use. You can contact the owners of that website and let them know that they need to use a different id for their add-on.
Updated•8 years ago
|
Product: addons.mozilla.org → Toolkit
You need to log in
before you can comment on or make changes to this bug.
Description
•