[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <468700B5.7080202@katamail.com>
Date: Sun, 01 Jul 2007 03:17:41 +0200
From: ascii <ascii@...amail.com>
To: carl hardwick <hardwick.carl@...il.com>
Cc: Full-Disclosure@...ts.grok.org.uk
Subject: Re: New flaw found in Firefox 2.0.0.4: Firefox
file input focus vulnerabilities
carl hardwick wrote:
> PoC here: http://yathong.googlepages.com/FirefoxFocusBug.html
>
> The vulnerability allows the attacker to silently redirect focus of
> selected key press events to an otherwise protected file upload form
> field. This is possible because of how onKeyDown event is handled,
> allowing the focus to be moved between the two. This enables the
> attacker to read arbitrary files on victim's system.
many thanks for sharing this : )
it's a pretty serious vulnerability as said by Zalewski
regards,
Francesco `ascii` Ongaro
http://www.ush.it
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists