Bugtraq mailing list archives
Re: [Full-disclosure] Firefox focus stealing vulnerability (possibly other browsers)
From: Michal Zalewski <lcamtuf () dione ids pl>
Date: Sun, 11 Feb 2007 23:17:28 +0100 (CET)
On Sun, 11 Feb 2007, Ben Bucksch wrote:
Filed as bug 370092 <https://bugzilla.mozilla.org/show_bug.cgi?id=370092>
As per my later posts, this problem might be already in Bugzilla (a variant of it was reported in mid-2006, and possibly independently as early as in 2000).
BTW: Your last bug (popup blocker + XMLHttpRequest + srand() = oops) was filed as bug 369390 <https://bugzilla.mozilla.org/show_bug.cgi?id=369390> The factors of the bug are filed as separate bugs, see "Depends on" list.
Yup, I'm on Cc: thanks.
Next time, could you please file the bugzilla bug yourself directly and cite the bug number in the post and cc security () mozilla org on it?
Sure. Cheers, /mz
Current thread:
- Firefox focus stealing vulnerability (possibly other browsers) Michal Zalewski (Feb 12)
- Re: [Full-disclosure] Firefox focus stealing vulnerability (possibly other browsers) Ben Bucksch (Feb 12)
- Re: [Full-disclosure] Firefox focus stealing vulnerability (possibly other browsers) Michal Zalewski (Feb 12)
- Re: [Full-disclosure] Firefox focus stealing vulnerability (possibly other browsers) Paul Szabo (Feb 12)
- Re: [Full-disclosure] Firefox focus stealing vulnerability (possibly other browsers) Michal Zalewski (Feb 12)
- Re: Firefox focus stealing vulnerability (possibly other browsers) Claus Färber (Feb 12)
- Re: Firefox focus stealing vulnerability (possibly other browsers) Michal Zalewski (Feb 12)
- Re: [Full-disclosure] Firefox focus stealing vulnerability (possibly other browsers) pdp (architect) (Feb 13)
- Re: Firefox focus stealing vulnerability (possibly other browsers) Andreas Beck (Feb 13)
- Re: Firefox focus stealing vulnerability (possibly other browsers) Michal Zalewski (Feb 13)
- Re: [Full-disclosure] Firefox focus stealing vulnerability (possibly other browsers) Ben Bucksch (Feb 12)
- Re: [Full-disclosure] Firefox focus stealing vulnerability (possibly other browsers) Michal Zalewski (Feb 12)