×
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
rhermiz
Former Member
Message 1 of 6
‎05-10-2011 02:52 PM

Request for Explanation of "BROWSER EXPLOIT" and request for re-eval

Jump to solution

When our users try to get to car.com, they get the big red scary screen that says something to this effect: stop, this website will ruin your life and steel all your money. Yet, this rating we see here doesn't reflect what the user sees.

We've been informed about the error message about a month ago and tried to contact the site advisor team. But there have been no response for weeks. Can someone, please, explain to me what is the browser exploit we are using, so we can correct it. If we are actually doing that. I reviewed our client-side code and couldn't find any weird cookie manipulations. How do I get more info? Or get McAfee to re-evaluate my website? I already have 2 open ticket and tried to talk to customer sevice several times to no avail.

Re: [Ticket ID #JDT-43911-261] Website erroneously blocked  - Tue 4/19/2011 11:42 AM
Re: [Ticket ID #SLV-19245-359] Please retest car.com - Tue 5/10/2011 3:54 PM

car.com

Green Verdict Image

We tested this site and didn't find any significant problems.

Are you the owner of this site? Leave a comment

Contact information:
CountryPopularity

United States

Lots of users

AUTOMATED WEB SAFETY TESTING RESULTS FOR CAR.COM

BROWSER EXPLOIT:

Breached browser security

When we browsed this site, it made unauthorized changes to our test PC.

0 Kudos
Reply
1 Solution

Accepted Solutions
x-pmeyer
Former Member
Message 5 of 6
‎05-13-2011 07:28 AM

Re: Request for Explanation of "BROWSER EXPLOIT" and request for re-eval

Jump to solution

Hello Rhermiz,

I followed up with Site Advisor support. The Site Advisor exploit warning should be removed within the next hours.

Best regards,

Peter

View solution in original post

0 Kudos
Reply
5 Replies
rhermiz
Former Member
Message 2 of 6
‎05-10-2011 03:19 PM

Re: Request for Explanation of "BROWSER EXPLOIT" and request for re-eval

Jump to solution

Update:

McAfee responded to my most recent ticket, I guess the first one was lost into oblivion. They think that since my site is rated "Green" I should be happy.

And still no details about the "Browser Exploit". We have to know what we're doing wrong because the average user of the  site advisor client would not know what the detail means. I mean the warning screen is pretty scary if you ask me... 

From: McAfee SiteAdvisor Support[mailto:support@siteadvisor.com] 
Sent: Tuesday, May 10, 2011 6:03 PM
To: Rod Hermiz
Subject: Re: [Ticket ID #SLV-19245-359] Please retestcar.com
Hello Rod,
I am very glad to inform you that your site (www.car.com) has been rated Green by McAfeeSiteAdvisor.
Please click on the link below for more information
http://www.siteadvisor.com/sites/car.com
We appreciate your patience during this process.
Sincerely,
Vengadavan
Avert Services
McAfee SiteAdvisor

Message was edited by: rhermiz on 5/10/11 5:19:58 PM CDT
0 Kudos
Reply
Hayton
Reliable Contributor
Reliable Contributor
Message 3 of 6
‎05-10-2011 09:34 PM

Re: Request for Explanation of "BROWSER EXPLOIT" and request for re-eval

Jump to solution

I see the problem. The site has a green rating but there's a blocking page that says Don't Go There. I also note the Browser Exploit warning. There's been a spate of these recently and I'm wondering if there's some temporary  website poisoning going on - something injected into a web page (which would, if malicious, quickly be flagged by SiteAdvisor). Problem there is, you say you've checked the client-side code and found nothing. Could it be in third-party content? Advertisements? It's not only your site that's been affected, and malware in advertisements has been talked about a lot recently.

If you're sure that that's not applicable to your site I think you'll have to hope that someone from SiteAdvisor gets to see this tomorrow and follows it up. Sorry I can't offer any more help.

Message was edited by: Hayton on 11/05/11 05:35:00 IST
0 Kudos
Reply
rhermiz
Former Member
Message 4 of 6
‎05-11-2011 01:50 AM

Re: Request for Explanation of "BROWSER EXPLOIT" and request for re-eval

Jump to solution

Thanks for yor attempt. We use the same third party advertisements at autobytel.com, myride.com and other domain names and none of those websites have a "browser exploit" warning.  Which makes isolating the culprit advertiser impossible... I hope that the site advisor team can give me specifics, otherwise I'm at a total loss.

Message was edited by: rhermiz on 5/11/11 3:51:40 AM CDT
0 Kudos
Reply
x-pmeyer
Former Member
Message 5 of 6
‎05-13-2011 07:28 AM

Re: Request for Explanation of "BROWSER EXPLOIT" and request for re-eval

Jump to solution

Hello Rhermiz,

I followed up with Site Advisor support. The Site Advisor exploit warning should be removed within the next hours.

Best regards,

Peter

0 Kudos
Reply
rhermiz
Former Member
Message 6 of 6
‎05-13-2011 07:30 AM

Re: Request for Explanation of "BROWSER EXPLOIT" and request for re-eval

Jump to solution

Thank you, Peter. Much appreciated

0 Kudos
Reply
How Many Badges Can You Collect?
Ready for a little competition? Members like you are earning badges and unlocking perks for their helpful answers. Are you? Click here to find out.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community

* Important Terms and Offer Details:

  Subscription, Free Trial, Pricing and Automatic Renewal Terms:

  • The amount you are charged upon purchase is the price of the first term of your subscription. The length of your first term depends on your purchase selection (e.g. 1 month or 1 year).  Once your first term is expired, your subscription will be automatically renewed on an annual basis (with the exception of monthly subscriptions, which will renew monthly) and you will be charged the renewal subscription price in effect at the time of your renewal, until you cancel (Vermont residents must opt-in to auto-renewal.)
  • Unless otherwise stated, if a savings amount is shown, it describes the difference between the introductory first term price (available only to customers without an existing McAfee subscription) and the renewal subscription price (e.g., first term price vs. each year thereafter).
  • Pricing is subject to change. If the renewal price changes, we will notify you in advance so you always know what’s going on.
  • You can cancel your subscription or change your auto-renewal settings any time after purchase from your My Account page. To learn more, click here.
  • You may request a refund by contacting Customer Support within 30 days of initial purchase or within 60 days of automatic renewal (for 1 year terms or longer).
  • Your subscription is subject to our License Agreement and Privacy Notice. Subscriptions covering "all" devices are limited to supported devices that you own. Product features may be added, changed or removed during the subscription term.  Not all features may be available on all devices.  See System Requirements for additional information.
  • Free Trial Terms: At the end of your trial period you will be charged $39.99 for the first term. After the first term, you will be automatically renewed at the renewal price (currently $124.99/yr). We will charge you 7-days before renewal. You can cancel at any time before you are charged. ​

 **Free Benefits With Auto-Renewal:

  • For many qualifying product subscriptions McAfee offers additional benefits for free when you are enrolled in auto-renewal. You can check your eligibility for these benefits in your My Account page. Not all benefits are offered in all locations or for all product subscriptions.  System Requirements apply.   Turning off auto-renewal terminates your eligibility for these additional benefits. 
  • Virus Protection Pledge (VPP): If we cannot remove a virus from your supported device we’ll refund you the amount you paid for your current term subscription.  The refund does not apply to any damage or loss caused by a virus.  You are responsible for backing up your data to prevent data loss. See terms here: mcafee.com/pledge.
  • Safe Connect VPN:  You will receive free, unlimited access to our VPN wireless on supported devices. Users not on auto-renewal have access to 500 MB/month of bandwidth.

   Additional Terms Specific to Identity Monitoring Service:

  • Eligibility: McAfee® Identity Monitoring Service Essentials is available within active McAfee Total Protection and McAfee LiveSafe subscriptions with identity monitoring for up to 10 unique emails. Phone number monitoring is enabled upon activation of Automatic Renewal. Not all identity monitoring elements are available in all countries. See Product Terms of Service for more information. 
  • Your subscription is subject to our License Agreement and Privacy Notice. Product features may be added, changed or removed during the subscription term. Some features may require registration and a valid ID number to activate. See System Requirements for additional information.
  • While McAfee Identity Monitoring Service provides you tools and resources to protect yourself from identity theft, no identity can be completely secure.
  • US Only:
    Fair Credit Reporting Act: You have numerous rights under the FCRA, including the right to dispute inaccurate information in your credit report(s). Consumer reporting agencies are required to investigate and respond to your dispute, but are not obligated to change or remove accurate information that is reported in compliance with applicable law. While this plan can provide you assistance in filing a dispute, the FCRA allows you to file a dispute for free with a consumer reporting agency without the assistance of a third party.
  • Identity theft coverage is not available in New York due to regulatory requirements.


Corporate Headquarters
6220 America Center Drive
San Jose, CA 95002 USA

Products

McAfee® Total Protection
McAfee® Gamer Security
McAfee® Identity Monitoring Service
McAfee® Security Scan Plus
McAfee® WebAdvisor
McAfee® Techmaster Concierge
McAfee® Virus Removal Service

Resources

Antivirus
Free Downloads
Parental Controls
Malware
Firewall
 Blogs
Activate Retail Card
Threat Center
McAfee Enterprise

Support

Consumer Support
FAQs
Renewals
Support Community

About

About McAfee
Careers
Contact Us
Newsroom
Investors
Legal Terms
Your Privacy Choices
System Requirements
Sitemap

Copyright © 2022 McAfee, LLC
Copyright © 2022 McAfee, LLC