Closed Bug 328445 Opened 18 years ago Closed 17 years ago

forward as inline loads local files in iframe

Tracking

(Not tracked)

Status:

RESOLVED FIXED

People

(Reporter: guninski, Assigned: mscott)

Details

georgi - hopefully not receiving bugspam

Reporter

Description

•

18 years ago

<iframe src='file:///etc/passwd'> loads local file when 
"forward(ed) as inline".

accessing local file is not nice if javascript may be executed.

accessing local files also may allow DoS via devices.

mailbox:
https://bugzilla.mozilla.org/attachment.cgi?id=213016

1.5 and trunk are affected 1.0.7 is not.

georgi - hopefully not receiving bugspam

Reporter

Comment 1

•

18 years ago

this seems fixed on latest suit trunk by some other bug.

the exploit doesn't work anymore.

chris hofmann

Comment 2

•

17 years ago

georgi, should we close this one?

georgi - hopefully not receiving bugspam

Reporter

Comment 3

•

17 years ago

(In reply to comment #2)
> georgi, should we close this one?
> 

this seems fixed on trunk and 2.0.0.9 according to my tests

chris hofmann

Updated

•

17 years ago

Status: NEW → RESOLVED

Closed: 17 years ago

Resolution: --- → FIXED

Daniel Veditz [:dveditz]

Updated

•

16 years ago

Group: core-security

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

forward as inline loads local files in iframe

Categories

(Thunderbird :: Message Compose Window, defect)

Tracking

(Not tracked)

People

(Reporter: guninski, Assigned: mscott)

References

Details

Crash Data

Security

(public)

User Story

Description

Comment 1

Comment 2

Comment 3

Updated

Updated