Firefox CVE-2007-1116 Information Disclosure Vulnerability

Firefox CVE-2007-1116 Information Disclosure Vulnerability

Firefox is prone to a information disclosure vulnerability. The CheckLoadURI function in Mozilla Firefox 1.8 lists the about: URI as a ChromeProtocol and can be loaded via JavaScript, which allows remote attackers to obtain sensitive information by querying the browser s session history.