nsHyperTextAccessible uses final role for text interface implementation, the same time nsMaiInterfaceText uses role from native markup. So if we have an example <input type="password" role="textbox"/> then AT can get an access to hidden text. It doesn't sound like security problem though it can be used for cheating. Marking as security bug for now. You're feedback is appreciated.
Is hiding this bug protecting anyone from being exploited? Seems like this bug could be unhidden.
(In reply to comment #1) > Is hiding this bug protecting anyone from being exploited? Seems like this bug > could be unhidden. It sounds no. Ok. It seems to me I don't have rights for this :)
AUTO-CLOSED. This bug untouched for over 2000 days. Please reopen if you can confirm the bug and help it progress.
Status: NEW → RESOLVED
Last Resolved: 2 years ago
Resolution: --- → INCOMPLETE
You need to log in before you can comment on or make changes to this bug.