Warning major vulnerabily in all browsers!!!

its called a Window Injection Vulnerability

test your browser here. It will very likelly fail no matter what you have.


http://secunia.com/multiple_browsers_window_injection_vulnerability_t est/

their advice so far is:
Solution:
Do not browse untrusted sites while browsing trusted sites.

Man your not going to beleive this, But when I did the test on Avant I didn't get the pop up, I did on Firefox though. :lol2:

Man your not going to beleive this, But when I did the test on Avant I didn't get the pop up, I did on Firefox though. :lol2:


did you get any pop up at all?

on firefox I did, Avant I didn't.

on firefox I did, Avant I didn't.


that is not good either, because what you should've got was a pop up from citibank.

I got one from citibank but I also got another pop up showing text from that Secunia site, Avant I just got the CitiBank site when I clicked the second link. No pop up at all.


And now I redo the test on Firefox and get no pop up, just the citibank site :sly:

well firefox has a pop up blocker built in so you should test it only with the first link. Same goes for advant if it has a pop up blocker.


Also to do the test properly you should refresh the secunia test page between tests.

Just tested with Firefox 1.0... wasn't vulnerable, though according to the site, it should have been. Weird.

Just tested with Firefox 1.0... wasn't vulnerable, though according to the site, it should have been. Weird.


did you click on this link?:
Test Now - With Pop-up Blocker

because firefox has a popup blocker and clicking on the other link(Test Now - Without Pop-up Blocker) will render the test invalid


I have firefox 1.0 too and it was vulnerable. It seems to be the only firefox vulnerabily without a pach so far. I'm sure they are working on it though

did you click on this link?:
Test Now - With Pop-up Blocker

Aye. Though, I did it a second time right afterward and it was vulnerable.