Multiple browsers are vulnerable to the Dialog Origin Spoofing Vulnerability

Common Tasks

Community

Email Notifications

Personal Links

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Secunia Research has discovered a vulnerability in various browsers, which can be exploited by malicious web sites to spoof dialog boxes. The problem is that JavaScript dialog boxes do not display or include their origin, which allows a new window to open e.g. a prompt dialog box, which appears to be from a trusted site.

-	Mozilla / Firefox / Camino Dialog Origin Spoofing Vulnerability

-	Microsoft Internet Explorer Dialog Origin Spoofing Vulnerability

-	Opera Dialog Origin Spoofing Vulnerability

If you go to the test page, please make sure no critical applications are open and test cautiously:

Secunia Browser - Dialog Origin Vulnerability Test

Posted: Jun 21 2005, 08:36 PM by Harry Waldron | with no comments

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.