You are currently viewing a snapshot of www.mozilla.org taken on April 21, 2008. Most of this content is highly out of date (some pages haven't been updated since the project began in 1998) and exists for historical purposes only. If there are any pages on this archive site that you think should be added back to www.mozilla.org, please file a bug.



You are here: Known Vulnerabilities in Mozilla Products (Firefox 1.0.3) > MFSA 2005-35

Mozilla Foundation Security Advisory 2005-35

Title: Showing blocked javascript: popup uses wrong privilege context
Severity: Moderate
Reporter: Doron Rosenberg
Products: Firefox, Mozilla Suite

Fixed in: Firefox 1.0.3
  Mozilla Suite 1.7.7

Description

When a popup is blocked the user is given the ability to open that one popup through the popup-blocking status bar icon and, in Firefox, through the infobar. If the popup URL were javascript: selecting "Show javascript:..." from the infobar or popup blocking status bar icon menus would run the javascript with elevated privileges which could be used to install malicious software.

Workaround

Do not show blocked popups, or, if you must, show individual popups only if the menu item starts with "Show http://" or "Show https://"

References