Closed Bug 299189 Opened 20 years ago Closed 20 years ago

Frame Injection Vulnerability when multiple Firefox windows are open

Categories

(Firefox :: Security, defect)

Product:
Firefox
Component:
Security
Platform:
x86
Windows XP
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
VERIFIED DUPLICATE of bug 296850

People

(Reporter: bove0007, Unassigned)

References

(
URL
)

Details

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.8) Gecko/20050511 Firefox/1.0.4 Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.8) Gecko/20050511 Firefox/1.0.4 This security vulnerability has been documented elsewhere (Secunia's security site - as given URL) but still seems unresolved. It could potentially allow hackers to write information on other people's websites (if a user had both a legitimate and a hacked website open at the same time). Reproducible: Always Steps to Reproduce: The info given by Secunia makes clear exactly what this security issue is and how to reproduce it. This flaw is Firefox security was recently reported in the UK's Computer Active Magazine (23rd June to 6th July - issue 192) and runs the risk of compromising Firefox's generally good security reputation.
This will be fixed in the next Firefox update *** This bug has been marked as a duplicate of 296850 ***
Group: security
Status: UNCONFIRMED → RESOLVED
Closed: 20 years ago
Resolution: --- → DUPLICATE
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.