[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20040428180629.GI16244@mars-attacks.org>
From: boklm at mars-attacks.org (nicolas vigier)
Subject: mozilla firefox 0.8 - linux (probably mozilla too) cut/paste (semi) vulnerability
On Wed, 28 Apr 2004, Michael Williamson wrote:
> This isn't as much a typical vulnerability as it is poorly-designed
> behavior. I've noticed when cutting/pasting data (unix style, w/middle
> mouse button) into a Web form, any attempt to paste into an area without
> first clicking on the input will result in firefox doing a google search
> on the contents of the paste. If I happen to be cutting/pasting
> confidential data, this is bad.
Yes. It's not a bug, it's a feature :)
When you paste an url on a webpage, the url is loaded. If it's not an
url then it is searched on google (or the search engine you selected).
It's possible to disable this behavior if you don't like it, add this
line in your user.js file :
user_pref("middlemouse.contentLoadURL", false);
more infos on this page :
http://www.mozilla.org/unix/customizing.html
Powered by blists - more mailing lists