Closed
Bug 1570637
Opened 5 years ago
Closed 5 years ago
Remote InternetGetConnectedStateExW
Categories
(Core :: Security: Process Sandboxing, task)
Core
Security: Process Sandboxing
Tracking
()
RESOLVED
DUPLICATE
of bug 1567892
People
(Reporter: tjr, Unassigned)
References
Details
(Whiteboard: [sb+])
To obtain the local IP address, which is used by WebRTC, the content process calls InternetGetConnectedStateExW which will load wininet.dll lazily.
But after we've lowered ourselves to a restricted token, we can't load dlls lazily (we crash). We want to remote this function call.
Reporter | ||
Updated•5 years ago
|
Whiteboard: [sb+]
Comment 1•5 years ago
|
||
Type: defect → task
Reporter | ||
Comment 2•5 years ago
|
||
Uhg, I wish I can included Steps to Reproduce. I'm pretty sure that I was just visiting https://browserleaks.com/webrtc and observing the crash. Post Bug 1567892 however; I no longer crash (when I turn on a semi-restricted token.) It does not; however, display any IP addresses, so something is still broken here.
You need to log in
before you can comment on or make changes to this bug.
Description
•