Computer Security
[EN] no-pyccku

Mozilla Firefox information leak
updated since 23.02.2007
SecurityVulns ID:7298
Threat Level:
Description:It's possible for script to check if given web page was visited by user.
Affected:MOZILLA : Firefox 1.5
 MOZILLA : Firefox 2.0
CVE:CVE-2007-1116 (The CheckLoadURI function in Mozilla Firefox 1.8 lists the about: URI as a ChromeProtocol and can be loaded via JavaScript, which allows remote attackers to obtain sensitive information by querying the browser's session history.)
Original documentdocumentpdp (architect), Firefox Cache Hack - Firefox History Hack redux (23.02.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod