function onFullScreen() should check for untrusted events

RESOLVED FIXED

Status

()

defect
RESOLVED FIXED
14 years ago
12 years ago

People

(Reporter: bugs, Assigned: dveditz)

Tracking

({fixed-aviary1.0.5, fixed1.7.9})

unspecified
Points:
---
Bug Flags:
blocking-aviary1.0.5 +
in-testsuite ?

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [sg:dos] fixed by 289940, URL)

Attachments

(1 attachment)

(Reporter)

Description

14 years ago
User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.8) Gecko/20050511 Firefox/1.0.4
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.8) Gecko/20050511 Firefox/1.0.4

Go to http://www.krickelkrackel.de/testing/fullscreen.htm
and see some toolbars and the statusbar go away.

I don't know if this is security related, but it makes 
spoofing easier.

Reproducible: Always

Actual Results:  
Missing chrome.


Expected Results:  
I think that this should not be possible.
(Assignee)

Comment 1

14 years ago
You're right this shouldn't happen, but it's more of an annoyance than a
security exploit. Might be fairly permanent though: most users probably don't
know about fullscreen mode and wouldn't be able to figure out how to get their
toolbars or menus back (F11 twice) -- especially since any hints on the View
menu are invisible too.

When bug 289940 is fixed this should get fixed for free, but leaving open so we
remember to retest to be sure.
Assignee: nobody → dveditz
Status: UNCONFIRMED → NEW
Depends on: 289940
Ever confirmed: true
Whiteboard: [sg:dos]
(Assignee)

Comment 3

14 years ago
This is fixed on the trunk.

*** This bug has been marked as a duplicate of 289940 ***
Status: NEW → RESOLVED
Last Resolved: 14 years ago
Resolution: --- → DUPLICATE
Whiteboard: [sg:dos] → [sg:dupe 289940]
(Assignee)

Comment 4

14 years ago
Bug 289940 isn't going to land on the branch, reopening for reconsideration.
Status: RESOLVED → REOPENED
Flags: blocking-aviary1.0.5?
Resolution: DUPLICATE → ---
Whiteboard: [sg:dupe 289940] → [sg:fix]
(Assignee)

Updated

14 years ago
Whiteboard: [sg:fix] → [sg:dos]
(Assignee)

Comment 5

14 years ago
OK, looks like bug 289940 is wanted on the branch. Either way, plussing to make
sure this one is fixed one way or the other
Flags: blocking-aviary1.0.5? → blocking-aviary1.0.5+
Whiteboard: [sg:dos] → [sg:dos] fixed by 289940
(Assignee)

Comment 6

14 years ago
This is fixed on the trunk by bug 289940. I didn't need to reopen to keep in
consideration for a 1.0-branch fix, the blocking flag takes care of that.
Status: REOPENED → RESOLVED
Last Resolved: 14 years ago14 years ago
Resolution: --- → FIXED
(Assignee)

Comment 8

14 years ago
fix for bug 289940 checked into aviary and mozilla 1.7 branches

Comment 9

14 years ago
v.fixed on aviary with Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.9)
Gecko/20050706 Firefox/1.0.5 using original testcase.
(Assignee)

Comment 10

14 years ago
Adding distributors
(Assignee)

Comment 11

14 years ago
FF1.0.5 advisories published
Group: security
(Reporter)

Comment 12

14 years ago
Thanks for fixing!

Updated

14 years ago
Flags: testcase+

Updated

12 years ago
Flags: in-testsuite+ → in-testsuite?
You need to log in before you can comment on or make changes to this bug.