Open Bug 432586 Opened 16 years ago Updated 2 years ago

Make it impossible for untrusted JS to get access to native anonymous content

Categories

(Core :: DOM: Core & HTML, defect, P5)

Product:
Core
Component:
DOM: Core & HTML
Platform:
x86
All
Type:
defect

Tracking

()

Milestone:
mozilla2.0

People

(Reporter: smaug, Unassigned)

References

(Blocks 1 open bug)

Details

Currently .originalTarget or .focusElement (IIRC) etc. may point to
native anonymous content and untrusted JS gets a security exception if
it tries to use it. Would be better if untrusted JS couldn't even
see that there is some native anonymous content.
Component: DOM: Core → DOM: Core & HTML
Blocks: 475864
also .relatedTarget and boxObject.firstChild / .lastChild /etc.
What else?
The XUL document focusedElement and whatnot stuff?  I think we do some security checks there already...
Blocks: 101197
https://bugzilla.mozilla.org/show_bug.cgi?id=1472046

Move all DOM bugs that haven’t been updated in more than 3 years and has no one currently assigned to P5.

If you have questions, please contact :mdaly.
Priority: -- → P5
Severity: normal → S3
You need to log in before you can comment on or make changes to this bug.