Important Notice: We're experiencing email notification issues. If you've posted a question in the community forums recently, please check your profile manually for responses while we're working to fix this.

On Monday the 3rd of March, around 5pm UTC (9am PT) users may experience a brief period of downtime while one of our underlying services is under maintenance.

Avatar for Username

搜尋 Mozilla 技術支援網站

防止技術支援詐騙。我們絕對不會要求您撥打電話或發送簡訊,或是提供個人資訊。請用「回報濫用」功能回報可疑的行為。

了解更多

此討論串已被封存。 如果您有需要幫助,請新增一個新問題

When log into ANZ.com, faced with a Noscript XSS (ANZ) script warning by Noscript, which offers me to either save the file, or open, or cancel, what to do?

  • 1 回覆
  • 1 有這個問題
  • 2 次檢視
  • 最近回覆由 Andrew

Andrew
Andrew
more options

When I open the ANZ.com website (and I have Noscript operating), Noscript identifies a XSS javascript (written by ANZ as part of its new internet banking website).

When I go to log in the login window pops up but within up to 50 seconds stalls then a javascript XSS warning shows (with a source from https://waf1x.anz.com). That window offers me a choice of (a) saving the javascript as a file, (b) opening the javascript with a program of my(?) choice, or cancelling the error window. The ANZ site becomes very sluggish until I cancel the error window, though even afterwards it is still slow.

The Javascript is " ... javascript__(function(){function i(){if(typeof XMLHttpRequest!='undefined'){return new XMLHttpRequest()}try{return new ActiveXObject(_Msxml2.XMLHTTP_)}catch(e){try{return new ActiveXObject(_Microsoft.XMLHTTP_)}catch(e){}}}function j(a){if(typeof(a)==_string_) ... "

How should I set up Firefox or Noscript to deal with the ANZ XSS script?

When I open the ANZ.com website (and I have Noscript operating), Noscript identifies a XSS javascript (written by ANZ as part of its new internet banking website). When I go to log in the login window pops up but within up to 50 seconds stalls then a javascript XSS warning shows (with a source from https://waf1x.anz.com). That window offers me a choice of (a) saving the javascript as a file, (b) opening the javascript with a program of my(?) choice, or cancelling the error window. The ANZ site becomes very sluggish until I cancel the error window, though even afterwards it is still slow. The Javascript is " ... javascript__(function(){function i(){if(typeof XMLHttpRequest!='undefined'){return new XMLHttpRequest()}try{return new ActiveXObject(_Msxml2.XMLHTTP_)}catch(e){try{return new ActiveXObject(_Microsoft.XMLHTTP_)}catch(e){}}}function j(a){if(typeof(a)==_string_) ... " How should I set up Firefox or Noscript to deal with the ANZ XSS script?

所有回覆 (1)

Andrew
Andrew 提出問題者
more options

reldepad said

When I open the ANZ.com website (and I have Noscript operating), Noscript identifies a XSS javascript (written by ANZ as part of its new internet banking website). When I go to log in the login window pops up but within up to 50 seconds stalls then a javascript XSS warning shows (with a source from https://waf1x.anz.com). That window offers me a choice of (a) saving the javascript as a file, (b) opening the javascript with a program of my(?) choice, or cancelling the error window. The ANZ site becomes very sluggish until I cancel the error window, though even afterwards it is still slow. The Javascript is " ... javascript__(function(){function i(){if(typeof XMLHttpRequest!='undefined'){return new XMLHttpRequest()}try{return new ActiveXObject(_Msxml2.XMLHTTP_)}catch(e){try{return new ActiveXObject(_Microsoft.XMLHTTP_)}catch(e){}}}function j(a){if(typeof(a)==_string_) ... " How should I set up Firefox or Noscript to deal with the ANZ XSS script?