Closed
Bug 158661
Opened 22 years ago
Closed 19 years ago
Invalid iframe src protocol (mailto:) causes freezing
Categories
(Core :: Layout: Images, Video, and HTML Frames, defect, P2)
Tracking
()
RESOLVED
WORKSFORME
Future
People
(Reporter: aldis, Assigned: john)
References
()
Details
(Keywords: hang, testcase)
Attachments
(1 file, 1 obsolete file)
151 bytes,
text/html
|
Details |
From Bugzilla Helper: User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.0.0) Gecko/20020530 BuildID: 2002053012 Can be used to launch a dos on user visiting url, probably same html can be inserted into an html mail. Reproducible: Always Steps to Reproduce: 1.Visit http://alv.times.lv/crashnosriptrequired.html 2. 3. Actual Results: New compose mail window opens. Mozilla freezes. Expected Results: nothing Mozilla shold stop evaluating <iframes after certain depth is reached. Mozilla shold ignore iframe tags with src other than src='http:',src='file:',src= without protocol specified.
Confirm the action specified. Running moz 2002071308, on Windows 2000. Moz froze.
Comment 2•22 years ago
|
||
I get many different assertions in a debug build. confirming with win2k build 20020720..
Comment 4•22 years ago
|
||
confirm with 200271808 WinXP. Get popup message that states: Alert: Composer cannot edit HTML framesets, or pages with inline frames. For framesets, try editing the page for each frame separately. For pages with iframces, save a copy of the page and remove the <iframe> tag.
Comment 5•22 years ago
|
||
->HTML Frames. What protocols should we handle in frames? http://, ftp://, and data: are the first 3 that come to my mind.
Assignee: attinasi → jkeiser
Component: Layout → HTMLFrames
QA Contact: petersen → amar
Updated•22 years ago
|
Priority: -- → P2
Comment 6•22 years ago
|
||
Bulk moving P1-P5 un-milestoned bugs to future.
Target Milestone: --- → Future
Comment 8•21 years ago
|
||
It is possible to start downloads in emule with that "exploit" without any notice of the user. You visit a page and the page starts some downloads in the background.
Comment 9•21 years ago
|
||
The image src bug is bug 181860 Please don't morph bug reports
Comment 10•21 years ago
|
||
image src?? I posted an iframe src attachment!
-->
<iframe width="0" height="0" frameborder="0"
src="ed2k://|file|eMule.crack.exe|55308|8140A314E4DF166941BD2042BDE6B3CC|/"
></iframe>
Comment 11•21 years ago
|
||
sorry, my mistake...
Updated•21 years ago
|
Flags: blocking1.4.2?
Comment 12•21 years ago
|
||
Too late to block 1.4.2. We need to get this one someone's radar though...
Flags: blocking1.4.2? → blocking1.4.2-
Updated•20 years ago
|
Flags: blocking1.8a4?
Comment 13•20 years ago
|
||
We should nail this down ASAP. Who can help?
Flags: blocking1.8a4? → blocking1.8a4+
Comment 14•20 years ago
|
||
FWIW I can't reproduce the mailto: iframe causing freezing. The rest of the bug devolved into a clone of bug 167475, disable external protocols from non-top-level documents.
Comment 16•19 years ago
|
||
Attachment #131775 -
Attachment is obsolete: true
Comment 17•19 years ago
|
||
WFM (i.e. no hang), SeaMonkey 2005-08-31-02 trunk Linux. The other issues mentioned in comments are covered by bug 167475 AFAICT. -> WORKSFORME
Status: NEW → RESOLVED
Closed: 19 years ago
Resolution: --- → WORKSFORME
Updated•6 years ago
|
Product: Core → Core Graveyard
Updated•6 years ago
|
Component: Layout: HTML Frames → Layout: Images
Product: Core Graveyard → Core
You need to log in
before you can comment on or make changes to this bug.
Description
•