Make sure the origin is correct on the script execution from "data:text/html;,<SCRIPT>...</SCRIPT>"
Status: NEW → ASSIGNED
Summary: Review data: protocol for security → Review data: protocol for security
Target Milestone: M14
Summary: Review data: protocol for security → [Feature] Review data: protocol for security
Target Milestone: M14 → M15
Push security review tasks off until M16.
Target Milestone: M15 → M16
Bulk moving all Browser Security bugs to new Security: General component. The previous Security component for Browser will be deleted.
Component: Security → Security: General
Check out http://www.nat.bg/~joro/datatrack.html see bugsplat bug #354219
Assignee: norris → mstoltz
Status: ASSIGNED → NEW
Changing Qa contact to myself.
QA Contact: dshea → junruh
Mitchell, Mitchell Stoltz wrote: > > Georgi, > You mentioned in a status report that hou have reviewed the data: > protocol for security recently. Are we still vulnerable to this exploit? > I double checked this potential vulnerability. It is fixed and I can confirm it does not work on build 2000051520. Regards, Georgi Guninski Marking bug RESOLVED as per Guninski.
Status: ASSIGNED → RESOLVED
Last Resolved: 18 years ago
Resolution: --- → FIXED
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.