Closed Bug 384636 Opened 17 years ago Closed 17 years ago

Images from blocked sites can be loaded by Javascript

Categories

(Firefox :: Security, defect)

Product:
Firefox
Component:
Security
Platform:
x86
Windows XP
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 94035

People

(Reporter: annonhong, Unassigned)

Details

User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.4) Gecko/20070515 Firefox/2.0.0.4
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.4) Gecko/20070515 Firefox/2.0.0.4

Tools -> Options -> Load Images Automatically -> Advanced

When sites are blocked, images are blocked.  However, if a website uses Javascript to load images from the blocked sites, images can still be loaded.  A correct behavior should be that any images from the blocked sites should be blocked regardless.

Reproducible: Always

Steps to Reproduce:
1. Block images from ad.doubleclick.net
   Tools -> Options -> Load Images Automatically -> Advanced
2. Go to http://www.reuters.com/article/InvestmentOutlook07/idUSN1537290920070615

Actual Results:  
Note that this page has some images from ad.doubleclick.net and images from this site are still loaded.

Expected Results:  
Images from blocked sites should be blocked even if a web page uses Javascript to load images.

In addition to images, blocking unwanted flash objects could be a great added feature.
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9a6pre) Gecko/20070613 Minefield/3.0a6pre

The only media from ads.doubleclick.net (found using Page Info) that I see on that page is two 1px x 1px images and a Flash object. Do you pass the testcase in attachment 120380 [details] after you disable loading images from mozilla.org?
Yes, testcase in https://bugzilla.mozilla.org/attachment.cgi?id=120380 works.
Image blocking does not block plugin content such as flash ads. WFM for actual images. Assuming what you're seeing is a flash ad as I do then this is a dupe of bug 94035 (alias "BlockFlash").

If you're really seeing the image blocking broken you can reopen this if there's a better way for us to see the problem.
Status: UNCONFIRMED → RESOLVED
Closed: 17 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.