Posted on 08/23/2008 7:25:48 PM PDT by Swordmaker
I did not know that. Thanks for the info.
Yeah, I just tried it with several browsers on my Mac G5 quad OSX 10.4, the clipboard was captured and kept pasting “evil.com” (Hillary’s website??) into everything.
It flushed the clipboard when I closed the window.
Ed
There is a solution to the problem: Look at the url you paste in the address box before you hit ENTER.
Wrong. Flash is good. Now PDF files...
That's just sloppy writing. The vulnerability is in Flash, which has the ability to access the clipboard on both operating systems (and Linux, too).
If you have a Photobucket account, you've probably used the Direct Link facility they put below each image. Click it, and it copies the picture URL to the clipboard. If you examine the underlying code, you will find it uses Javascript to access an included .swf, which does the actual copy operation.
I really wish there was a way to send a large EMP into the servers owned by these spammers. I'd like to tase the spammers too for good measure!
Flash needs to be replaced with something open. For crying out loud, Adobe *still* hasn’t released a 64-bit Flash player!
So you're the guy spreading all the Flash malware.
/kidding
Yes, if you open the clipboard viewer (clipbrd.exe) with the site open, you can watch the clipboard being rapidly over written with the infected URL. Navigate away from the site and the clipboard contents stay, but can be overwritten by the user.
I believe I have witnessed the end-result of this very problem. I have received numerous messages on facebook from folks I know, that have a short three or four word message, and a long crazy looking url. While the URLs appear to be different, they all go to the same fake video hosting “page” that if you click ANYWHERE on the page, it downloads an exe file that appears to be a pretty ugly bug.
The friends I have received this from are all pretty good folks who would not intentionally pass on such trash. I suspect they used one of the apps on facebook to send something to all their friends - and the malicious url was put through instead.
Or the problem is completely unrelated - but sure sounds so (notice the reference to facebook in the text).
Of course, as I sit here typing on my iBook, I’m not worried about the .exe file sitting on my desktop.
Anyone want me to send you the file????
Thank you for this tip. I use Firefox and have only run NoScript until I saw this post. I'm amazed at how much faster my ad-heavy homepage loads now. Much appreciated.
Lynx doesn’t seem to suffer from this problem. ;)
No problem, don’t forget to subscribe to filter list for ABP to eliminate 99% of the ad junk out there, I personally prefer Rick’s Easylist.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.