forward as inline loads local files in iframe

RESOLVED FIXED

Status

defect
RESOLVED FIXED
14 years ago
11 years ago

People

(Reporter: guninski, Assigned: mscott)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

<iframe src='file:///etc/passwd'> loads local file when 
"forward(ed) as inline".

accessing local file is not nice if javascript may be executed.

accessing local files also may allow DoS via devices.

mailbox:
https://bugzilla.mozilla.org/attachment.cgi?id=213016

1.5 and trunk are affected 1.0.7 is not.
this seems fixed on latest suit trunk by some other bug.

the exploit doesn't work anymore.

Comment 2

12 years ago
georgi, should we close this one?
(In reply to comment #2)
> georgi, should we close this one?
> 

this seems fixed on trunk and 2.0.0.9 according to my tests

Updated

12 years ago
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
Group: core-security
You need to log in before you can comment on or make changes to this bug.