Closed Bug 265266 Opened 20 years ago Closed 20 years ago

[Secunia] - opening link from malicious site in new tab can be used to spoof dialog box & steal info from it.

Categories

(Core :: Security, defect)

Product:
Core
Component:
Security
Platform:
x86
Windows XP
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
VERIFIED DUPLICATE of bug 262887

People

(Reporter: patrick.hendriks+bugzilla, Assigned: dveditz)

References

(
URL
)

Details

Inactive tabs can launch dialog boxes so they appear to be displayed by a web
site in another tab. This can be exploited by a malicious web site to show a
dialog box, which seems to originate from a trusted web site. Successful
exploitation would normally require that a user is tricked into opening a link
from a malicious web site to a trusted web site in a new tab.
Darn summary got screwed up.

I'm not sure if this was posted yet, but it didn't show up in Bugzilla
Summary: box by Sse → [Secunia] - opening link from malicious site in new tab can be used to spoof dialog box & steal info from it.
bug 124750?
bug 124750 is the second part of it, but I'll dupe this to the meta bug.

*** This bug has been marked as a duplicate of 262887 ***
Status: NEW → RESOLVED
Closed: 20 years ago
Resolution: --- → DUPLICATE
Group: security
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.