Closed
Bug 592198
Opened 14 years ago
Closed 8 years ago
make text interface consistent for password fields in respect to native markup and aria roles
Categories
(Core :: Disability Access APIs, defect)
Core
Disability Access APIs
Tracking
()
RESOLVED
INCOMPLETE
People
(Reporter: surkov, Unassigned)
References
(Blocks 1 open bug)
Details
(Keywords: access, Whiteboard: [auto-closed:inactivity])
nsHyperTextAccessible uses final role for text interface implementation, the same time nsMaiInterfaceText uses role from native markup. So if we have an example <input type="password" role="textbox"/> then AT can get an access to hidden text. It doesn't sound like security problem though it can be used for cheating. Marking as security bug for now. You're feedback is appreciated.
Comment 1•14 years ago
|
||
Is hiding this bug protecting anyone from being exploited? Seems like this bug could be unhidden.
Reporter | ||
Comment 2•14 years ago
|
||
(In reply to comment #1) > Is hiding this bug protecting anyone from being exploited? Seems like this bug > could be unhidden. It sounds no. Ok. It seems to me I don't have rights for this :)
Updated•14 years ago
|
Group: core-security
Comment 3•8 years ago
|
||
AUTO-CLOSED. This bug untouched for over 2000 days. Please reopen if you can confirm the bug and help it progress.
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → INCOMPLETE
Whiteboard: [auto-closed:inactivity]
You need to log in
before you can comment on or make changes to this bug.
Description
•