Text only | Text with Images

LandzDown Forum

Security => Security Alerts & Briefings => Topic started by: Die Hard on February 28, 2006, 07:18:07 PM

Title: Be careful when using the clipboard, web-pages can tap it
Post by: Die Hard on February 28, 2006, 07:18:07 PM
Text copied onto the clipboard can be seen on the web.

http://www.theinquirer.net/?article=29856

Die Hard :)
Title: Re: Be careful when using the clipboard, web-pages can tap it
Post by: Ripley on February 28, 2006, 10:10:25 PM
Die Hard  :)

Thnx for the heads up!  :thumbsup:

Didn't know this.  I am always amazed at what I learn here at Landzdown!  :thumbsup:

ripley
Title: Re: Be careful when using the clipboard, web-pages can tap it
Post by: JOSEPH on March 01, 2006, 07:13:30 AM
That was quite the read. And to think how they used to chitter chat about how easy prey 98's were to this type of occurance.
Title: Re: Be careful when using the clipboard, web-pages can tap it
Post by: SpiritWind on March 04, 2006, 07:36:38 AM
 :D The Author of the Inquirer article recommends setting the "Allow paste operations
      via script" to "Disable" ; both the Editor of Spyware Weekly Newsletter and Mitch
      recommend setting this to "Prompt". I wonder if the latter is sufficient to avoid
      the info in the clipboard from being seen on the web !?
Title: Re: Be careful when using the clipboard, web-pages can tap it
Post by: Die Hard on March 04, 2006, 09:19:50 AM
Quote from: SpiritWind on March 04, 2006, 07:36:38 AM
:D The Author of the Inquirer article recommends setting the "Allow paste operations
      via script" to "Disable" ; both the Editor of Spyware Weekly Newsletter and Mitch
      recommend setting this to "Prompt". I wonder if the latter is sufficient to avoid
      the info in the clipboard from being seen on the web !?

If you go to that test-page having the settings set to "Allow" , the info in the clip-board is copied into the page, without a prompt or anything
I copied your post and went there :

http://www.sourcecodesworld.com/special/clipboard.asp

(https://www.landzdown.com/index.php?action=dlattach;topic=5706.0;attach=844)

When you have set it to "Prompt" a window will open where you allow or deny:
(https://www.landzdown.com/index.php?action=dlattach;topic=5706.0;attach=842)


And if you click no, the info kept in the clip-board is safe:
(https://www.landzdown.com/index.php?action=dlattach;topic=5706.0;attach=843)

[attachment deleted by admin]
Title: Re: Be careful when using the clipboard, web-pages can tap it
Post by: Corrine on March 04, 2006, 03:42:07 PM
Unlike IE, this feature is disabled in Firefox.  In the event, however, you do wish to allow copy/paste on a particular server, you can use the AllowClipboard Helper (https://addons.mozilla.org/extensions/moreinfo.php?id=852&application=firefox) extension to edit the user.js for just that site.  (Note:  after adding the site, you will have to restart Firefox) 
Title: Re: Be careful when using the clipboard, web-pages can tap it
Post by: Tarnak on March 05, 2006, 01:39:38 AM
  A few years ago when I knew less than I know now( :hysterical: Still don't know much!!) I came across this site- http://bcheck.scanit.be/bcheck/ - ,and from memory it tested for Clipboard vulnerability. To this day I do not use clipboard. :(
Title: Re: Be careful when using the clipboard, web-pages can tap it
Post by: babyoh on March 12, 2006, 07:53:09 AM
 :rose: wow. i sure do learn alot here  :thumbsup:
and, Tarnak, thanks for the bcheck.scanit.be link -- very cool

:gwave:
Title: Re: Be careful when using the clipboard, web-pages can tap it
Post by: Paddy on March 12, 2006, 03:35:02 PM
I seem to have passed the test ....

Quote
Browser Security Test Results
Dear Customer,
The Browser Security Test is finished. Please find the results below:
High Risk Vulnerabilities   0
Medium Risk Vulnerabilities   0
Low Risk Vulnerabilities   0



numbnuts.. :thumbsup:
Text only | Text with Images