Closed Bug 1711340 Opened 3 years ago Closed 3 years ago

Firefox exposes installed applications on windows through :// schemes to websites

Categories

(Firefox :: Untriaged, defect)

Product:
Firefox
Component:
Untriaged
Version:
78 Branch
Type:
defect

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1711084

People

(Reporter: non7top, Unassigned)

Details

User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0

Steps to reproduce:

Go to https://schemeflood.com/

Actual results:

It lists applications I have installed on my PC.

Expected results:

Opening a link is pure user-side thing, site should not be aware of what has happened after it spawned the url.

Group: firefox-core-security
Status: UNCONFIRMED → RESOLVED
Closed: 3 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.