http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/ Thoughts on Security in an Uncivilized World… Fri, 13 Nov 2009 09:32:59 -0700 http://wordpress.org/?v=2.9.1 hourly 1 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/comment-page-1/#comment-729 JusyUnons Fri, 30 Jan 2009 10:26:42 +0000 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/#comment-729 xs-sniper.com - now in my rss reader))) xs-sniper.com – now in my rss reader)))

]]> http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/comment-page-1/#comment-542 Zero Day mobile edition Thu, 03 Jul 2008 18:11:24 +0000 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/#comment-542 [...] site.    Rios and my blogging collegue Nate McFeters have spent the better part of the last year warning about serious URI-handler security [...] [...] site.    Rios and my blogging collegue Nate McFeters have spent the better part of the last year warning about serious URI-handler security [...]

]]> http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/comment-page-1/#comment-286 Technology latest news » Blog Archive » Mozilla flaw attack code published (InfoWorld) Fri, 29 Feb 2008 03:18:14 +0000 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/#comment-286 [...] second flaw was disclosed Tuesday by Billy Rios and Nathan McFeters, security consultants with Verisign and Ernst & Young [...] [...] second flaw was disclosed Tuesday by Billy Rios and Nathan McFeters, security consultants with Verisign and Ernst & Young [...]

]]> http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/comment-page-1/#comment-285 Technology latest news » Blog Archive » Researcher Publishes Attack Code for Mozilla Flaw (PC World) Fri, 29 Feb 2008 03:17:46 +0000 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/#comment-285 [...] which was the source of another bug, disclosed Tuesday by Mozilla. This second flaw was disclosed Tuesday by Billy Rios and Nathan McFeters, security consultants with Verisign Inc. and Ernst & [...] [...] which was the source of another bug, disclosed Tuesday by Mozilla. This second flaw was disclosed Tuesday by Billy Rios and Nathan McFeters, security consultants with Verisign Inc. and Ernst & [...]

]]> http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/comment-page-1/#comment-199 Kapila Rattan Fri, 12 Oct 2007 11:07:02 +0000 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/#comment-199 Hi, I was going through your blog regarding the vulnerability. It would be a great help if u could tell me what registry settings need to be done for the exploit running. Hi,
I was going through your blog regarding the vulnerability. It would be a great help if u could tell me what registry settings need to be done for the exploit running.

]]> http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/comment-page-1/#comment-198 IE bug Fri, 12 Oct 2007 08:34:04 +0000 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/#comment-198 nice bug. http:%00../../../../windows/system32/calc.exe"cmd nice bug.
http:%00../../../../windows/system32/calc.exe”cmd

]]> http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/comment-page-1/#comment-138 hackademix.net » IE's "Non-Bug" Can Cost Your (Second)Life Sun, 16 Sep 2007 16:26:26 +0000 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/#comment-138 [...] Firefox pwns… all the world and Mozilla recognizes the same bug that had been blamed on IE affects Firefox itself. [...] [...] Firefox pwns… all the world and Mozilla recognizes the same bug that had been blamed on IE affects Firefox itself. [...]

]]> http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/comment-page-1/#comment-71 VulnAware.com » VU#783400:Mozilla Firefox URI filtering vulnerability Wed, 08 Aug 2007 23:23:04 +0000 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/#comment-71 [...] using an application layer firewall or IPS may mitigate this vulnerability. See the xs-sniper blog for more information about known vulnerable URIs. Please note that these filters may only work for [...] [...] using an application layer firewall or IPS may mitigate this vulnerability. See the xs-sniper blog for more information about known vulnerable URIs. Please note that these filters may only work for [...]

]]> http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/comment-page-1/#comment-68 The Protocol Handler Saga Continues: Say What Secunia? - Jesper's Blog Wed, 08 Aug 2007 03:41:12 +0000 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/#comment-68 [...] Protocol Handler Saga is rapidly becoming a religious war. The latest entry is related to a very cool exploit that Billy Rios and Nate McFeters published on Tuesday. Unfortunately, he failed to give Mozilla a chance to fix the problem before [...] [...] Protocol Handler Saga is rapidly becoming a religious war. The latest entry is related to a very cool exploit that Billy Rios and Nate McFeters published on Tuesday. Unfortunately, he failed to give Mozilla a chance to fix the problem before [...]

]]> http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/comment-page-1/#comment-63 Blog do Márcio d’Ávila » Firefox 2.0.0.6 bloqueia falha em Windows XP/2003 Thu, 02 Aug 2007 04:28:36 +0000 http://xs-sniper.com/blog/2007/07/24/remote-command-execution-in-firefox-2005/#comment-63 [...] Remote Command Execution in FireFox et al, por Billy (BK) Rios, 24 julho 2007. [...] [...] Remote Command Execution in FireFox et al, por Billy (BK) Rios, 24 julho 2007. [...]

]]>