eval(code, Components) allows XSS attacks since Components.__parent__ refers to the outer window object. see also: bug 298315, bug 311024
Created attachment 199100 [details] testcase Works on: Mozilla/5.0 (Windows; U; Win98; en-US; rv:1.9a1) Gecko/20051008 Firefox/1.6a1
Is this essentially testcase 1 of bug 311892? Components.__parent__.__proto__ === window.__proto__ One way or another we want this fixed with the splitwindows loopholes.
I'm going to mark this bug a duplicate of bug 311892. The hack-patch that I tried out earlier with Brendan watching also fixed this testcase. I'll ensure that the final patch fixes all testcases in both bugs. *** This bug has been marked as a duplicate of 311892 ***
Status: NEW → RESOLVED
Last Resolved: 14 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.