Comments on: 0DAY: QuickTime pwns Firefox

By: iTunes Users Prey to Old QuickTime Vulnerability | iTunes Recovery

iTunes Users Prey to Old QuickTime Vulnerability | iTunes Recovery — Fri, 23 Mar 2012 06:11:50 +0000

[...] researcher, Petko D. Petkov—aka pdp—on Sept. 12 posted proof-of-concept codeshowing how QuickTime media formats can be used to get into Firefox, leading to full browser [...]

By: Association QuickTime et Firefox : attention, danger ! â€” SecurityVibes Magazine

Wed, 23 Mar 2011 15:17:27 +0000

[...] vif, la » menace Petkov » est montÃ©e d’un cran mercredi, suite Ã la publication d’une preuve de concept dÃ©montrant comment un problÃ¨me de risque faible peut Ãªtre trÃ¨s [...]

By: .:[ d4 n3wS ]:. » Blog Archive » Faille importante dans Firefox

.:[ d4 n3wS ]:. » Blog Archive » Faille importante dans Firefox — Wed, 25 Aug 2010 04:13:55 +0000

[...] Origine de l’article : http://www.gnucitizen.org/blog.....ns-firefox [...]

By: backdooring windows media files

backdooring windows media files — Mon, 21 Jun 2010 00:53:47 +0000

[...] the purpose of the file formats listed above. First of all, they are meta files just like Appleâ€™s QTL. Second, they are standard for the Windows operating system and supported by default. Finally, the [...]

By: Firefox 2.0.0.7 Released

Firefox 2.0.0.7 Released — Tue, 24 Mar 2009 05:45:26 +0000

[...] of FF with critical security issue is code execution via QuickTime Media-link files, discovered by Petko D. Petkov. Its security issue could be used by crackers or script kiddies to steal local data, installing [...]

By: Backdooring Windows Media Files | GNUCITIZEN

Backdooring Windows Media Files | GNUCITIZEN — Sun, 01 Feb 2009 14:19:00 +0000

[...] purpose of the file formats listed above. First of all, they are meta files just like Apple’s QTL. Second, they are standard for the Windows operating system and supported by default. Finally, the [...]

By: Google Chrome Options | GNUCITIZEN

Google Chrome Options | GNUCITIZEN — Thu, 18 Sep 2008 13:50:59 +0000

[...] far too many applications that misbehave when launching links. QuickTime is one of them. Remember QuickTime Pwns Firfox? Mozilla has discontinued the -chrome command line option in order to prevent similar attacks from [...]

By: More on GIFARS and Other Dangerous Attacks | GNUCITIZEN

More on GIFARS and Other Dangerous Attacks | GNUCITIZEN — Mon, 04 Aug 2008 06:45:42 +0000

[...] way you look at it, SUN has to do something about the issue. Perhaps, what Firefox did to prevent this exploit from working. » more | » comments rss | posted by pdp | syndication and [...]

By: radioxid

radioxid — Tue, 08 Apr 2008 13:05:57 +0000

The alert doesn’t work anymore on FF 20013…

By: sachinKT

sachinKT — Wed, 05 Mar 2008 18:33:43 +0000

i dont know but some hacks are not working…

By: Technology latest news » Blog Archive » Mozilla fixes QuickTime flaw in Firefox (InfoWorld)

Sat, 01 Mar 2008 09:39:16 +0000

[...] bug in the way the Firefox browser works with QuickTime media files. The flaw, which was reported last week by hacker Petko Petkov, gives attackers a way to run unauthorized commands on a [...]

By: tapasman

tapasman — Tue, 27 Nov 2007 17:30:12 +0000

opps IE 6 and QT 6.0

By: tapasman

tapasman — Tue, 27 Nov 2007 17:29:18 +0000

sweet so none of these execute on my system,*shaking fist ala Homer* unless you have something hidden. thanks for the info and sorry you did not get credit for it. I know how you feel I have discovered close to 10 new unknown virueses and hacks and got no credit, oh well atleast my co-workers know.

By: pissedoff?

pissedoff? — Fri, 23 Nov 2007 09:24:47 +0000

your beyonce is not malicious?what about this received by AV?:

Threat: Bloodhound.Exploit.161

By: Assyren

Assyren — Mon, 19 Nov 2007 20:46:29 +0000

I’m using Windows XP sp2 IE but it’s not working the song 1.mp3 is runing but the calc.exe is not working i use this code

what should i change so it will work ?
thanx

By: Francoise MAHENC

Francoise MAHENC — Tue, 06 Nov 2007 21:56:27 +0000

What do I do now? One week ago, I got a Trojan, my Word documents were erratic, the Firewall antivirus detected nothing..MS were of no help beyond checking that my softwares were legal. I first got a paid Plus version of my AdAware, which promptly got erratic too, but detected and deleted a MRU. After I had tried to watch a YouTube [professional] video, I had noticed a QT icone come out of nowhere [my son installed iTunes on my laptop, which I never use - and Yes, I browse as an administrator, not knowing any better]. After AdAware, I also switched to Firefox, feeling fed-up with MS generally, and from checking on NoScript, I now got on your QT bug page – it tallies. WHAT DO I DO NOW? I guess this is of no interest to you [except as further proof on Windows users being morons!]but please direct me to people who can answer me: you are the only source of clear information I could get till now. Sorry to bother you, thank you for your activity – and thank you in advance if you can direct me. Francoise Mahenc

By: Tech News » Blog Archive » Firefox Update Patches Quicktime Flaw

Tech News » Blog Archive » Firefox Update Patches Quicktime Flaw — Mon, 05 Nov 2007 20:53:54 +0000

[...] flaw is technically in Quicktime and affects the Internet Explorer as well, though Petkov says on his blog that IEâ€™s security policies make the flaw less [...]

By: Alanat News » Unpatched QuickTime Bug Threatens Firefox

Alanat News » Unpatched QuickTime Bug Threatens Firefox — Fri, 02 Nov 2007 23:14:06 +0000

[...] D. Petkov, a penetration tester, «www.gnucitizen.org» that the “vulnerability can lead to a full compromise of the browser and maybe even [...]

By: Oldboy

Oldboy — Wed, 24 Oct 2007 20:31:21 +0000

Real through this vulnerability to load exe through the URL?

By: Firefox 2.0.0.7 QuickTime-related Issue | Slaptijack

Firefox 2.0.0.7 QuickTime-related Issue | Slaptijack — Fri, 19 Oct 2007 17:43:40 +0000

[...] issue, first reported by Petko D. Petkov, could allow a remote attacker to launch Firefox with the privileges of the local user. This would [...]