Malicious Firefox Extensions

Philippe Beaucamps 1 Daniel Reynaud 1
1 CARTE - Theoretical adverse computations, and safety
Inria Nancy - Grand Est, LORIA - FM - Department of Formal Methods
Abstract : The purpose of this paper is to warn Mozilla Firefox users about the risk associated with browser extensions, especially the fact that Firefox extensions are more dangerous than ActiveX controls in Internet Explorer. Interestingly, the lack of security of ActiveX controls is well known whereas the security of Firefox extensions seems to be ignored. This danger is platform-independant, Microsoft Windows as well as Mac OS and Linux are vulnerable as long as Firefox is used. Finally, we only consider Firefox but virtually every Mozilla application implementing an extension mechanism is subject to this threat, such as Thunderbird.
Type de document :
Communication dans un congrès
Symposium sur la sécurité des techniques d'information et de communication, Jun 2008, Rennes, France. 2008
Liste complète des métadonnées

https://hal.inria.fr/inria-00338077
Contributeur : Philippe Beaucamps <>
Soumis le : lundi 10 novembre 2008 - 17:04:01
Dernière modification le : jeudi 11 janvier 2018 - 06:21:25

Identifiants

  • HAL Id : inria-00338077, version 1

Collections

Citation

Philippe Beaucamps, Daniel Reynaud. Malicious Firefox Extensions. Symposium sur la sécurité des techniques d'information et de communication, Jun 2008, Rennes, France. 2008. 〈inria-00338077〉

Partager

Métriques

Consultations de la notice

216