Closed
Bug 336383
Opened 19 years ago
Closed 3 years ago
[meta] DOM Range and Editor (designMode/execCommand/contentEditable) fuzzer
Categories
(Core :: Fuzzing, defect)
Core
Fuzzing
Tracking
()
RESOLVED
FIXED
People
(Reporter: jruderman, Unassigned)
References
(Depends on 27 open bugs)
Details
(Keywords: meta, sec-other, Whiteboard: [sg:nse meta])
Attachments
(4 obsolete files)
This fuzzer creates random DOM Range objects, selects them, and calls random execCommand functions. It also tests most DOM Range functions.
Reporter | ||
Comment 1•19 years ago
|
||
Updated•19 years ago
|
Whiteboard: [sg:nse meta]
Reporter | ||
Comment 2•19 years ago
|
||
* Converted it to use fuzz.js (see bug 339948). * Now works as a bookmarklet, by stuffing the page into an iframe.
Attachment #220613 -
Attachment is obsolete: true
Reporter | ||
Updated•19 years ago
|
Reporter | ||
Comment 3•19 years ago
|
||
Joe, it would be great if you or someone else working on Editor could fix the crash bugs found with this fuzzer, bug 335995 and bug 336081, as well as a bug that seems to stop the fuzzer (or even the user) from making further changes to the document, bug 336091. Once those three bugs are fixed, another round or two of fuzzing should tell us whether there are any easy-to-find security holes involving the execCommand API.
Reporter | ||
Comment 4•19 years ago
|
||
Attachment #224054 -
Attachment is obsolete: true
Reporter | ||
Comment 5•18 years ago
|
||
Attachment #226750 -
Attachment is obsolete: true
Reporter | ||
Updated•18 years ago
|
Assignee: chofmann → jruderman
Reporter | ||
Comment 6•18 years ago
|
||
Comment on attachment 242972 [details] DOM Range and designMode fuzzer 3.0 New version in bug 339948.
Attachment #242972 -
Attachment is obsolete: true
Reporter | ||
Updated•18 years ago
|
Reporter | ||
Updated•16 years ago
|
Reporter | ||
Updated•15 years ago
|
Summary: DOM Range and designMode execCommand fuzzer → DOM Range and Editor (designMode/execCommand/contentEditable) fuzzer
Reporter | ||
Comment 7•9 years ago
|
||
I ended up splitting this into two DOMFuzz modules, but I'll keep tracking both their bugs here. https://github.com/MozillaSecurity/funfuzz/blob/master/dom/fuzzer/modules/editor.js https://github.com/MozillaSecurity/funfuzz/blob/master/dom/fuzzer/modules/range-and-selection.js
Group: core-security
Updated•8 years ago
|
Component: Tracking → Platform Fuzzing Team
Comment 8•3 years ago
|
||
The bug assignee didn't login in Bugzilla in the last 7 months.
:decoder, could you have a look please?
For more information, please visit auto_nag documentation.
Assignee: jruderman → nobody
Flags: needinfo?(choller)
Updated•3 years ago
|
Summary: DOM Range and Editor (designMode/execCommand/contentEditable) fuzzer → [meta] DOM Range and Editor (designMode/execCommand/contentEditable) fuzzer
Updated•3 years ago
|
Status: NEW → RESOLVED
Closed: 3 years ago
Flags: needinfo?(choller)
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•