Computer Security
[EN] securityvulns.ru no-pyccku


Mozilla Firefox information leak
updated since 23.02.2007
Published:23.02.2008
Source:
SecurityVulns ID:7298
Type:remote
Threat Level:
4/10
Description:It's possible for script to check if given web page was visited by user.
Affected:MOZILLA : Firefox 1.5
 MOZILLA : Firefox 2.0
CVE:CVE-2007-1116 (The CheckLoadURI function in Mozilla Firefox 1.8 lists the about: URI as a ChromeProtocol and can be loaded via JavaScript, which allows remote attackers to obtain sensitive information by querying the browser's session history.)
Original documentdocumentpdp (architect), Firefox Cache Hack - Firefox History Hack redux (23.02.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod