Multiple Vendor Internet Browser User Action Prediction/Interception Weakness

Multiple Vendor Internet Browser User Action Prediction/Interception Weakness

Multiple vendor Internet Browsers are reported prone to a weakness where user actions may be used to commit unintentional actions. It is reported that if a malicious website can control or predict a user action, then a malicious site may popup a dialog and have the user unintentionally commit an action to that dialog.

The issue is reported to be exploitable through the XPInstall dialog feature of Mozilla and Mozilla Firefox. Other browsers are also vulnerable.