为提升您的使用体验,本站正在维护,部分功能暂时无法使用。如果本站文章无法解决您的问题,您想要向社区提问的话,请到 Twitter 上的 @FirefoxSupport 或 Reddit 上的 /r/firefox 提问,我们的支持社区将会很快回复您的疑问。

Avatar for Username

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

话题已存档。 如果需要帮助请提出新问题。

When log into ANZ.com, faced with a Noscript XSS (ANZ) script warning by Noscript, which offers me to either save the file, or open, or cancel, what to do?

  • 1 个回答
  • 1 人有此问题
  • 3 次查看
  • 最后回复者为 Andrew

Andrew
Andrew
more options

When I open the ANZ.com website (and I have Noscript operating), Noscript identifies a XSS javascript (written by ANZ as part of its new internet banking website).

When I go to log in the login window pops up but within up to 50 seconds stalls then a javascript XSS warning shows (with a source from https://waf1x.anz.com). That window offers me a choice of (a) saving the javascript as a file, (b) opening the javascript with a program of my(?) choice, or cancelling the error window. The ANZ site becomes very sluggish until I cancel the error window, though even afterwards it is still slow.

The Javascript is " ... javascript__(function(){function i(){if(typeof XMLHttpRequest!='undefined'){return new XMLHttpRequest()}try{return new ActiveXObject(_Msxml2.XMLHTTP_)}catch(e){try{return new ActiveXObject(_Microsoft.XMLHTTP_)}catch(e){}}}function j(a){if(typeof(a)==_string_) ... "

How should I set up Firefox or Noscript to deal with the ANZ XSS script?

When I open the ANZ.com website (and I have Noscript operating), Noscript identifies a XSS javascript (written by ANZ as part of its new internet banking website). When I go to log in the login window pops up but within up to 50 seconds stalls then a javascript XSS warning shows (with a source from https://waf1x.anz.com). That window offers me a choice of (a) saving the javascript as a file, (b) opening the javascript with a program of my(?) choice, or cancelling the error window. The ANZ site becomes very sluggish until I cancel the error window, though even afterwards it is still slow. The Javascript is " ... javascript__(function(){function i(){if(typeof XMLHttpRequest!='undefined'){return new XMLHttpRequest()}try{return new ActiveXObject(_Msxml2.XMLHTTP_)}catch(e){try{return new ActiveXObject(_Microsoft.XMLHTTP_)}catch(e){}}}function j(a){if(typeof(a)==_string_) ... " How should I set up Firefox or Noscript to deal with the ANZ XSS script?

所有回复 (1)

Andrew
Andrew 提问者
more options

reldepad said

When I open the ANZ.com website (and I have Noscript operating), Noscript identifies a XSS javascript (written by ANZ as part of its new internet banking website). When I go to log in the login window pops up but within up to 50 seconds stalls then a javascript XSS warning shows (with a source from https://waf1x.anz.com). That window offers me a choice of (a) saving the javascript as a file, (b) opening the javascript with a program of my(?) choice, or cancelling the error window. The ANZ site becomes very sluggish until I cancel the error window, though even afterwards it is still slow. The Javascript is " ... javascript__(function(){function i(){if(typeof XMLHttpRequest!='undefined'){return new XMLHttpRequest()}try{return new ActiveXObject(_Msxml2.XMLHTTP_)}catch(e){try{return new ActiveXObject(_Microsoft.XMLHTTP_)}catch(e){}}}function j(a){if(typeof(a)==_string_) ... " How should I set up Firefox or Noscript to deal with the ANZ XSS script?