Firefox Blocks Microsoft .NET Framework Assistant Add-on

Outsmart Malicious Hackers


This is an interesting development, I noticed the pop-up on my Firefox yesterday. The reason however wasn’t security it was ‘instability’.

It’s a fair move by Mozilla though as the add-on can cause security vulnerabilities in Firefox outside of their control. They can’t fix the software, so the best thing they can do to ensure user safety is to block it.

Compounded with the fact it’s extremely hard for users to remove the add-on themselves the block is a good idea.

Mozilla late Friday blocked the Microsoft-made software that had put Firefox users at risk from attack.

The two-part Microsoft component — an add-on dubbed “.NET Framework Assistant” and a plug-in named “Windows Presentation Foundation” — have been blocked by Mozilla as a precautionary measure, said Mike Shaver, the company’s head of engineering.

“Because of the difficulties some users have had entirely removing the add-on, and because of the severity of the risk it represents if not disabled, we contacted Microsoft today to indicate that we were looking to disable the extension and plug-in for all users via our blocklisting mechanism,” Shaver said in an announcement posted Friday night to the company’s security blog .

The annoying thing is these add-ons are installed in Firefox without any kind of prompt or permission given by the user.

Microsoft pushed them out with the .NET Framework 3.5 Service Pack 1 (SP1) update in February this year, so our browsers have been vulnerable since then.

The software was almost impossible to remove without some registry hacking, Microsoft did remedy this later – but still how many people would know?

Mozilla maintains an add-on/plug-in blocking list that automatically bars risky software from being used by Firefox. The open-source company first used the blocker in 2007. Mozilla has used the tool only nine times, including Friday’s blocking of the Microsoft add-on and plug-in. In May 2008, for example, Mozilla added a Vietnamese language pack for Firefox to the blocking list when the pack was found to contain a worm.

According to Shaver, Microsoft gave Mozilla the go-ahead to block the .Net Framework Assistant and the Windows Presentation Foundation.

Last week, Microsoft’s security team acknowledged that its software — which had been silently installed in Firefox as far back as February 2009 — contained a critical vulnerability that could be used by hackers to hijack Windows PCs. The same vulnerability also affected all versions of Internet Explorer (IE), including the newest version, IE8.

Thankfully Firefox has the blocklist functionality and they have been aggressively moving towards ensuring 3rd party additions are also secure and don’t comprise the integrity of the platform.

Last month they warned users with out of date Flash plugins to update.

Firefox 3.6 will be even more aggressive in this aspect warning users when they visit a site that relies on one or more outdated add-ons.

Source: Network World

Posted in: Exploits/Vulnerabilities, Windows Hacking

, , , , ,


Latest Posts:


OWASP ZSC - Obfuscated Code Generator Tool OWASP ZSC – Obfuscated Code Generator Tool
OWASP ZSC is an open source obfuscated code generator tool in Python which lets you generate customized shellcodes and convert scripts to an obfuscated script.
A Look Back At 2017 – Tools & News Highlights A Look Back At 2017 – Tools & News Highlights
So here we are in 2018, taking a look back at 2017, quite a year it was. Here is a quick rundown of some of the best hacking/security tools released in 2017, the biggest news stories and the 10 most viewed posts on Darknet as a bonus.
Spectre & Meltdown Checker - Vulnerability Mitigation Tool For Linux Spectre & Meltdown Checker – Vulnerability Mitigation Tool For Linux
Spectre & Meltdown Checker is a simple shell script to tell if your Linux installation is vulnerable against the 3 "speculative execution" CVEs that were made public early 2018.
Hijacker - Reaver For Android Wifi Hacker App Hijacker – Reaver For Android Wifi Hacker App
Hijacker is a native GUI which provides Reaver for Android along with Aircrack-ng, Airodump-ng and MDK3 making it a powerful Wifi hacker app.
Sublist3r - Fast Python Subdomain Enumeration Tool Sublist3r – Fast Python Subdomain Enumeration Tool
Sublist3r is a Python-based tool designed to enumerate subdomains of websites using OSINT. It helps penetration testers and bug hunters collect and gather subdomains for the domain they are targeting.
coWPAtty Download - Audit Pre-shared WPA Keys coWPAtty Download – Audit Pre-shared WPA Keys
coWPAtty is a C-based tool for running a brute-force dictionary attack against WPA-PSK and audit pre-shared WPA keys.


6 Responses to Firefox Blocks Microsoft .NET Framework Assistant Add-on

  1. Hannibal October 20, 2009 at 7:10 am #

    To be honest… Thank GOD at last they blocked these damn fucking things you could not even uninstall.

    BTW…
    http://tech.slashdot.org/story/09/10/19/1215230/Mozilla-Unblocks-Microsofts-NET-Addon?art_pos=20

    damn :(

  2. Morgan Storey October 20, 2009 at 10:18 am #

    I looked at the steps to uninstall it sometime ago, but decided against it, it required a broweser restart which I rarely do, so I just disabled it.
    I actually heard someone say the other day that due to Java locking down on MS distributing their own bad version of a Java Virtual Machine, MS came out with .NET, interesting idea. But even this many years on .NET is not as good as java and javascript in my opinion.

  3. Mony October 20, 2009 at 4:12 pm #

    Initially when I read the news about Microsoft in Digg I hoped Mozilla team to come up with solution and Mozilla rocked again.

  4. Ahmad Barirani November 2, 2009 at 4:25 am #

    This is actually a nice move from Mozilla. Somebody has to care about its customers. If Microsoft doesn’t, then Mozilla has to.

  5. Kane December 17, 2009 at 9:02 am #

    Morgan, You didn’t remove it because it requires a browser restart??? That is the most stupidest thing I’ve ever heard. What, are you afraid it won’t start again? LOL

  6. Morgan Storey December 17, 2009 at 12:09 pm #

    @Kane: Not really my FF browser is stable I usually restart it maybe once a month and at that stage I am not thinking about the .net plugin, besides it is disabled now. I tend to keep tabs open that I am part way through reading, plus my email, RSS feeds, monitoring sites, all up it comes to about 20 tabs.