mailing list archives
Re: New flaw found in Firefox 220.127.116.11: Firefox file input focus vulnerabilities
From: "Guasconi Vincent" <tyoptyop () gmail com>
Date: Sun, 1 Jul 2007 01:26:38 +0200
On 7/1/07, ascii <ascii () katamail com> wrote:
carl hardwick wrote:
PoC here: http://yathong.googlepages.com/FirefoxFocusBug.html
The vulnerability allows the attacker to silently redirect focus
many thanks for sharing this : )
it's a pretty serious vulnerability as said by Zalewski
Pretty serious for you, me, and some others.
0.02$ that it will never be patched.
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/