Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Mozilla-based browser cross domain violation

Mozilla-based browser cross domain violation

by Mario Miri on April 25th, 2003 A problem in Mozilla-based WWW browser has been reported that may allow to the malicious web site visited to view the information in other browser windows through the onClick() code execution when violation in browser security zone occurs.


Vulnerable:
Beonex Communicator 0.8.2
Mozilla Browser 1.0
Mozilla Browser 1.0.1
Mozilla Browser 1.1 Alpha
Mozilla Browser 1.1 Beta
Mozilla Browser 1.1
Mozilla Browser 1.2 Alpha
Mozilla Browser 1.2 Beta
Mozilla Browser 1.2
Mozilla Browser 1.2.1
Mozilla Browser 1.3
Mozilla Firebird 0.5
Netscape Communicator 6.2.3
Netscape Communicator 7.0
Netscape Communicator 7.01
Netscape Communicator 7.02


Solution:
Currently there are no vendor supplied patches.


Discovered by:
Liu Die Yu,[email protected]


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »