Universal XSS using utf-16be content with utf-16le header

RESOLVED FIXED in mozilla19

Status

()

RESOLVED FIXED
6 years ago
6 years ago

People

(Reporter: emk, Unassigned)

Tracking

Trunk
mozilla19
Points:
---

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(1 attachment)

96 bytes, text/html;charset=utf-16le
Details
(Reporter)

Description

6 years ago
Created attachment 655865 [details]
Testcase

Only Firefox is vulnerable atm.
(Reporter)

Updated

6 years ago
Attachment #655865 - Attachment description: text/html;charset=utf-16le → Testcase
Attachment #655865 - Attachment mime type: text/html → text/html;charset=utf-16le
(Reporter)

Comment 1

6 years ago
Maybe we also need to implement "BOM trumps everything" rule per Encoding spec before fixing this.
Depends on: 716579
(Reporter)

Comment 2

6 years ago
Fixed by bug 716579.
Status: NEW → RESOLVED
Last Resolved: 6 years ago
Resolution: --- → FIXED
(Reporter)

Updated

6 years ago
Target Milestone: --- → mozilla19
You need to log in before you can comment on or make changes to this bug.