http://myf00.net/?p=18
Very cool idea for infecting Firefox by modifying the (Javascript) overlay file for an existing add-on. It occurs to me that this may be even easier with Chrome which also appears to me to use Javascript for some key code and which stores the program files in a user-writeable folder. I guess it's only somewhat easier, but with Firefox you might have the added barrier of privilege elevation. Larry Seltzer Contributing Editor, PC Magazine [email protected] http://blogs.pcmag.com/securitywatch/ <http://blogs.pcmag.com/securitywatch/>
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
