Re: Re: Bypass phishing protection in Firefox / Opera
yes, this what you comment is another different failure and i've commented it in the following article: http://www.zonafirefox.net/2007/02/nueva-falla-en-el-filtro-anti-phishing.html By the way, i think this new way to bypass the phishing protection is some dangerous. Demostrations again (look at the code): http://zonafirefox.googlepages.com/prueba2.html http://zonafirefox.googlepages.com/prueba.html Firefox 2.0.0.3, Opera 9.10 and Opera 9.2b fails. IE7 has no problems. A single IFRAME / OBJECT can bypass phishing protection. More info: http://www.zonafirefox.net/2007/03/salteando-el-filtro-antiphishing-con-un.html http://www.zonafirefox.net/2007/03/salteando-el-filtro-antiphishing-con.html
Bypass phishing protection in Firefox / Opera
Hi, i've tested a simple way to bypass the phishing protection in Firefox 2.0.0.3 and Opera 9.10. Aparently both browsers fails to detect a phishing site if it is embeded in an IFRAME / OBJECT label. I've released some demostrations to test the above: http://zonafirefox.googlepages.com/prueba.html (using Javascript to create an iframe object) http://zonafirefox.googlepages.com/prueba2.html (without Javascript) Also, the following code can be used to bypass the phishing protection: "" The tests were realized using several many sites from Phishtank database. IE7 has no problems. Any feedback and/or confirmation of the above will be very appreciated. rgds, nsp
Re: Firefox: about:blank is phisher's best friend
I tested it in IE7 and has the same problem. Opera 9.10 blocks the opening of the new window but fails in the second button.
