Quick Options

NSFW Content:
Listing Mode:
Coloring Style:
Animations:

◀ Quick Options    Login    Register
New Users 
X Greetings! You are not currently logged in, but please don't let that stop you from voting up any videos you like. :)
No Script Captured a XSS(Malicious Attack) From VideoSift AD
posted by NordlichReiter 3 weeks 5 days ago • 148 views
Snap shot:

[NoScript XSS] Sanitized suspicious request. Original URL [googleads.g.doubleclick.net/pagead/ads?


I cant post the whole request because it is presumed to be malicious, and someone might follow the link. I am trying to find a way to navigate to the malicious link with out running the risk of damaging my browser or my box.

Looking into it now, and I'm not sure what is suspicious about it. This is the first time Ive been notified of this, and thus posting it here so other people can verify if its a false positive or not.

The request is originating From chrome://browser/content/browser.xul

I can see other adds fine, but every time I try out the URL No script blocks that add request, and sanitizes the URL.

http://74.125.113.132/search?q=cache:Y32sB_B4RhUJ:forums.mozillazine.org/viewtopic.php%3Fp%3D2940752+XSS+chrome://browser/content/browser.xul&cd=1&hl=en&ct=clnk&gl=us&client=firefox-a

bookmarks (1)
Comments subscribe to this feed
A non-functional search field showed up on top of some Facebook games I'm playing. When I looked at Firefox's Error messages, I found links to Chrome's google search bar and

Error: uncaught exception: [Exception... "Node was not found" code: "8" nsresult: "0x80530008 (NS_ERROR_DOM_NOT_FOUND_ERR)" location: "chrome://ym_notifier/content/ym_drag.js Line: 44"]


written by dotdude  | 3 weeks 5 days ago | CH
 0  | flag spam (0)
I may have been t by the same thing - firefox came up with the yellow "need a special addon to play x" bar, but couldn't find anything to play it with. That might have been this. At the time, I just thought my flash had dies or something.


written by gwiz665  | 3 weeks 5 days ago | CH
 0  | flag spam (0)
I don't have chrome or any of its libraries.

It seems to be malfunctioning something, I'm not sure its a cross scripting attack. But the majority of JavaScript scripting attacks tend to come from Ad Servers that have been affected, and are no fault of the webmaster who use the add

I don't have time to trouble shoot this, but I plan on taking a look around this weekend. Lately its been hectic, and it doesn't seem to be getting any easier. Real life sucks sometimes.


written by NordlichReiter  | 3 weeks 4 days ago | CH
 0  | flag spam (0)
Thanks for letting us know- I'll take this up with our ad providers- see if we can find the culprit.


written by dag  | 3 weeks 4 days ago | CH
 0  | flag spam (0)
Submit Comment

Connect with Facebook
          - OR -
log in or register to submit new comment


who has this post bookmarked
gwiz665



Top Sift for Nov 23rd, 2009

Kevin Smith on Twilight - Longer Version

Newest Channel Talk Posts
 
 
3. Rainbow Warriors (British Talk)
 
 
5. The new stargate on hulu.com (1sttube Talk)
 
6. Got Fired Today... (Happy Talk)
 
 
 
 
10. Finally Saw "Moon" (Scifi Talk)
 
Subscribe
   Sifted Geek Videos
   Unsifted Geek Videos
   Geek Talk Posts
   All Member Comments

» What is this RSS thing?
Video Hosts
We accept video submissions from the below hosts. If your favorite video provider is not available, please contact us to suggest it.
VideoSift Friends & Partners
Useful Pages
Top 15 Geek Sifters of All Time
1. Zifnab  (14870 votes)
2. arvana  (9013 votes)
3. kronosposeidon  (5930 votes)
4. EDD  (5853 votes)
5. deputydog  (5770 votes)
6. eric3579  (3848 votes)
7. Zonbie  (3661 votes)
8. K0MMIE  (3621 votes)
9. dystopianfuturetoday  (3384 votes)
10. silvercord  (3213 votes)
11. sometimes  (3151 votes)
12. winkler1  (3088 votes)
13. maatc  (3046 votes)
14. Farhad2000  (2996 votes)
15. youdiejoe  (2952 votes)
Top 15 Geek Sifters of the Past Week
1. Kevlar  (123 votes)
2. Zifnab  (101 votes)
3. Ornthoron  (82 votes)
4. demon_ix  (76 votes)
5. therealblankman  (68 votes)
6. brycewi19  (61 votes)
7. spoco2  (50 votes)
8. reiwan  (47 votes)
9. Sarzy  (40 votes)
10. ant  (36 votes)
11. Fusionaut  (32 votes)
12. dotdude  (32 votes)
13. geo321  (23 votes)
14. ctrlaltbleach  (22 votes)
15. lv_hunter  (20 votes)
Current Users
1. GenjiKilpatrick
2. mattsy
3. potatolover
4. NetRunner
5. rosser99
6. braindonut
7. beelzerob
8. DrewNumberTwo
9. mongoosemonk
10. Bradaphraser
11. Rotty
12. moodonia
13. Yogi
14. Majortomyorke
15. PHJF
16. jan
17. yourhydra
18. Sarzy
19. csnel3
20. Plonq
21. fuzzyundies
22. dannon0831
23. tabmow
24. Babymech
25. acidSpine
26. enon
27. majortom3000
28. lv_hunter
29. theali
30. Seric
31. JesseoftheNorth
32. razzyl
33. FlowersInHisHair
34. campionidelmondo
35. dystopianfuturetoday
36. Jinx
37. syncron
38. marinara
39. BoneyD
40. volumptuous
41. wolfie
42. notarobot
43. steroidg
44. grinter
45. jreinisch
46. senereo
47. rosekat
48. oohlalasassoon
49. turboj0e
50. LordOderus