Has this issue been resolved in 4.0? http://www.informationweek.com/news/security/vulnerabilities/226700396?cid=nl_IW_daily_2010-08-18_h

1 回覆
1 有這個問題
最近回覆由 cor-el

13 年前

dohc97

5/5/11, 2:52 AM

I wanted to find out if the issue described in the URL below has been fixed in the latest version of firefox.

http://www.informationweek.com/news/security/vulnerabilities/226700396?cid=nl_IW_daily_2010-08-18_h

I wanted to find out if the issue described in the URL below has been fixed in the latest version of firefox. http://www.informationweek.com/news/security/vulnerabilities/226700396?cid=nl_IW_daily_2010-08-18_h

Answer 1 · 2011-05-05 02:52:05

cor-el

Moderator
Top 10 Contributor

5/5/11, 12:20 PM

That is about opening obfuscated links in an iframe.

Bug 570658 – Username-in-URL obfuscation warning isn't shown for iframe loads

If you visit a malicious website that way then the Firefox phishing protection will kick in.

data:text/html,<iframe src="http://foo.com@www.mozilla.com/firefox/its-a-trap.html">

Maybe NoScript has a protection against it.

NoScript: https://addons.mozilla.org/firefox/addon/noscript/

搜尋 Mozilla 技術支援網站

Has this issue been resolved in 4.0? http://www.informationweek.com/news/security/vulnerabilities/226700396?cid=nl_IW_daily_2010-08-18_h

所有回覆 (1)

向網友求救

Explore Our Help Articles

Mozilla 帳號

搜尋 Mozilla 技術支援網站

Has this issue been resolved in 4.0? http://www.informationweek.com/news/security/vulnerabilities/226700396?cid=nl_IW_daily_2010-08-18_h

所有回覆 (1)