[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <Pine.LNX.4.58.0702122151550.5750@dione>
Date: Mon, 12 Feb 2007 21:53:47 +0100 (CET)
From: Michal Zalewski <lcamtuf@...ne.ids.pl>
To: Claus Färber <GMANE@...rber.muc.de>
Cc: full-disclosure@...ts.grok.org.uk, bugtraq@...urityfocus.com
Subject: Re: Firefox focus stealing vulnerability
(possibly other browsers)
On Mon, 12 Feb 2007, [ISO-8859-1] Claus Färber wrote:
> A proper solution would be to keep a list of files explicitly selected
> by the user and only allow uploads of files in this list. Then even if a
> script can manipulate the field, the browser won't upload files that
> have not been selected by the user.
Not necessarily that easy: notice that it is the user who enters the name
of a target file.
Unless you want to prevent the browser from accepting any files that were
not chosen using a visual file selector widget - but in such a case,
there's not much point in having a manual file path entry box in the first
place.
/mz
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists