tag:blogger.com,1999:blog-23714519.post7888204309134102315..comments2023-10-18T02:14:08.061+11:00Comments on Alex's Corner: XSS-ing Firefox Extensionskuza55http://www.blogger.com/profile/03932544559060480887noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-23714519.post-15962535933874772112008-07-30T14:16:00.000+10:002008-07-30T14:16:00.000+10:00Turns out I fail at testing things.I *did* get the...Turns out I fail at testing things.<BR/><BR/>I *did* get the payload working, but since my main computer was out of commision at the time, I had tested it on a computer running without approx. 4 months of patches to tamper data + firefox; having tries the same payload in the latest version of tamper data it no longer seems to work.<BR/><BR/>One thing which seemed different between the old version of Tamper Data where this worked and the new version where this didn't was that the old version seemed to be writing the data directly to an about:blank window, whereas the newer version seems to be using a data: URI window to do something similar (not quite sure how though). I'll have a look at this in more detail when I get some time.kuza55https://www.blogger.com/profile/03932544559060480887noreply@blogger.comtag:blogger.com,1999:blog-23714519.post-58644900122047818282008-07-28T01:24:00.000+10:002008-07-28T01:24:00.000+10:00To be more specific:Firefox throws "A script from ...To be more specific:<BR/><BR/>Firefox throws "A script from "moz-nullprincipal:{270839df-288d-476b-b8ec-742aab92ffbb}" was denied UniversalXPConnect privileges." for the elevation request and "Error: Permission denied to get property XPCComponents.classes" for the nsILocalFile instantiation.<BR/><BR/>-RoeeAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-23714519.post-79922377487091952952008-07-28T00:59:00.000+10:002008-07-28T00:59:00.000+10:00Hey,Did you get your payload working?When i first ...Hey,<BR/><BR/>Did you get your payload working?<BR/><BR/>When i first disclosed the vulnerability I actually tried exploiting it with the exact payload, however, Firefox refused to create the nsILocalFile object (I couldn't even elevate privileges using netscape.security.PrivilegeManager.enablePrivilege("UniversalXPConnect")). <BR/><BR/>-RoeeAnonymousnoreply@blogger.com