Post Reply 
Mozilla browser "about:" exploit
Dec. 15, 2004, 04:40 AM
Post: #16
 
Time of the year to post another version of KBSP Big Teeth

Code:
[Patterns]
Name = "Mozilla: "About" Crash"
Active = TRUE
URL = "($TYPE(htm)|$TYPE(js)|$TYPE(vb(s|)))"
Limit = 128
Match = "(\s|)src=$AV(about:*)"
"|(window.\w.|)\w.print(\(\);|)"

This seems to work with Sidki's "nasty" version Eyes Closed Smile

Please comment/criticize Smile!
Visit this user's website
Add Thank You Quote this message in a reply
Dec. 25, 2004, 07:37 AM
Post: #17
 
This filter nullifies the Print[] function:

Code:
[Patterns]
Name = "Javascript: Remove Print() Function [Kye-U]"
Active = TRUE
URL = "($TYPE(htm)|$TYPE(js))"
Limit = 128
Match = "print\((*|)\)"
Replace = "Shonenscape()"
Visit this user's website
Add Thank You Quote this message in a reply
Post Reply 


Forum Jump: