Closed Bug 265266 Opened 15 years ago Closed 15 years ago

[Secunia] - opening link from malicious site in new tab can be used to spoof dialog box & steal info from it.

Categories

(Core :: Security, defect)

x86
Windows XP
defect
Not set

Tracking

()

VERIFIED DUPLICATE of bug 262887

People

(Reporter: patrick.hendriks+bugzilla, Assigned: dveditz)

References

()

Details

Inactive tabs can launch dialog boxes so they appear to be displayed by a web
site in another tab. This can be exploited by a malicious web site to show a
dialog box, which seems to originate from a trusted web site. Successful
exploitation would normally require that a user is tricked into opening a link
from a malicious web site to a trusted web site in a new tab.
Darn summary got screwed up.

I'm not sure if this was posted yet, but it didn't show up in Bugzilla
Summary: box by Sse → [Secunia] - opening link from malicious site in new tab can be used to spoof dialog box & steal info from it.
bug 124750?
bug 124750 is the second part of it, but I'll dupe this to the meta bug.

*** This bug has been marked as a duplicate of 262887 ***
Status: NEW → RESOLVED
Closed: 15 years ago
Resolution: --- → DUPLICATE
Group: security
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.