PDA

View Full Version : Safari dialog box spoofing security advisory


MacBytes
Oct 21, 2004, 02:36 PM
Category: --- Special Topics
Link: Safari dialog box spoofing security advisory (http://www.macbytes.com/link.php?sid=20041021153621)
Posted on MacBytes.com (http://www.macbytes.com)

Approved by Mudbug

aarond12
Oct 21, 2004, 02:39 PM
Category: --- Special Topics
Link: Safari dialog box spoofing security advisory (http://www.macbytes.com/link.php?sid=20041021153621)
Posted on MacBytes.com (http://www.macbytes.com)

Approved by Mudbug

Yawn. What are they trying to prove again? Am I missing something, or is this just basic Javascript that could be used to "spoof" any browser?

-Aaron-

grapegraphics
Oct 21, 2004, 02:41 PM
Does what it says in WindowsXPsp2 with Firefox!!

and...

Nermal
Oct 21, 2004, 02:55 PM
Does what it says in WindowsXPsp2 with Firefox!!

You'd better upgrade then, Firefox has been patched already.

Edit: Well, that's what I'd heard, but I have the latest patches and it still seems to be 'susceptible' :confused:

iMeowbot
Oct 21, 2004, 03:05 PM
It's really more of an interface problem than anything. The dialog boxes don't identify the window or tab that own them.

Some of the related problems found in other browsers are considerably worse, because there's no visible indication of anything unusual happening at all; e.g. keystrokes can be captured.

isgoed
Oct 21, 2004, 04:20 PM
Note: On Safari the demonstration does not work in tabs. Only when the link above is opened in a new window.
Funny; In Camino this only works in tabs and not with a new window.

CybrCyfr
Oct 21, 2004, 04:28 PM
IE 6 on Win XP is effected as well...

Again, yawn...

nsb3000
Oct 21, 2004, 04:34 PM
Category: --- Special Topics
Link: Safari dialog box spoofing security advisory (http://www.macbytes.com/link.php?sid=20041021153621)
Posted on MacBytes.com (http://www.macbytes.com)

Approved by Mudbug


How often do you really enter info into a Popup anyway. I feel like these security companies are just out on a fishing expedition...


-Nathaniel

mainstreetmark
Oct 21, 2004, 04:47 PM
This is retarded. Questionable websites can pop a javascript box?

So, first, I have to go to a questionable website and leave it open. Then, I have to go directly to a reputable website in another window. Then the first window pops a dialog in hopes that the stupid user will think it's from the new website?

This is hardly an exploit. Spoof websites are much more dangerous than this.

iMeowbot
Oct 21, 2004, 04:55 PM
How often do you really enter info into a Popup anyway. I feel like these security companies are just out on a fishing expedition...
Yep, now consider how easy it would be to confuse one of those with a standard login dialog. This won't catch too many experienced users, but there is no shortage of inexperienced and otherwise nontechnical users using the Mac platform.

musicpyrite
Oct 21, 2004, 05:03 PM
I got an email about this yesterday.

Picture:
http://www.kurczaba.com/images/iespoof.png

awulf
Oct 21, 2004, 06:20 PM
When the Dialogue box pops up, it switches back to the Secunia tab, so I don't see the problem.

nagromme
Oct 21, 2004, 06:48 PM
Minor, yes, Worth fixing? Sure.

macridah
Oct 21, 2004, 09:43 PM
I don't think i would fall for that trick cause i only go through my bookmarks for sites like that, but I would definitely patch that flaw.

Chealion
Oct 21, 2004, 11:47 PM
Funny how this spoof advisory has appeared now. Did no one figure out that this *could* happen back in the days Netscape still ruled the web?

It's not that hard to do, and what I find annoying about Secunia is that it is presented as if it's a brand new flaw. It's not. It's just finally pointed out. So good on them for doing that.

jdhuskey
Oct 22, 2004, 02:31 PM
Secunia fails to report that this effects many other browsers too.

Isn't this the same company that MS paid to do research and report that Windows is just as secure as Linux and Mac? They are reaching for anything they can to try and cast doubt on the Mac platform.

iMeowbot
Oct 22, 2004, 02:49 PM
Secunia fails to report that this effects many other browsers too.
There are separate advisories for each browser. Here are the ones they issued for Avant (http://secunia.com/advisories/12717/), Konqueror (http://secunia.com/advisories/12706/), Maxthon (http://secunia.com/advisories/12731/), Microsoft Internet Explorer (http://secunia.com/advisories/12889/), the Mozilla family (http://secunia.com/advisories/12712/), Netscape (http://secunia.com/advisories/12714/) and Opera (http://secunia.com/advisories/12713/).