Quote
desga2
mmmmm... extensions, Who need it?
but i need this one: bugmenot-auto registeration( super thanks to matt, now i can spam and post obscenities in the honDUH-acura forums
)
ok,seriously..that chatzilla bug has no affect on kmeleon because it will only activate when clicking on explioted irc hyper addresses and when the irc protocol is registered to chatzilla inside the browser
e.g like this address:
irc://freenodes.net/blahblah#freebsd
the above address on firefox with chatzilla will trigger chatzilla window to connect to that channel and enter the room.. but this will not happen in kmeleon with chatzilla
when chatzilla is installed in firefox, the protocol is registered at once to chatzilla and that's where the exploit lies so a site can be coded to include a bogus irc protocol that opens chatzilla to do nasty stuff
when chatzilla was ported to kmeleon the protocol registration was eliminated... to be honest, it wasn't removed because of a foresight of such a vulnerability but because it was too hard to register in kmeleon due to lack of certain services and not really useful so chatzilla can only be opened manually in kmeleon from its menu command and therefore that vulnerability does not exist at all on km+chatzilla
instant relaxation:
http://home.htp-tel.de/sterntaler/index1.html
fireworks @ ikenhatu pond +cours des choses
thank you gunter