Firefox Privacy Broken If Used to Open Web Page File
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: Firefox Privacy Broken If Used to Open Web Page File
- From: Liu Die Yu <liudieyu.com@xxxxxxxxx>
- Date: Tue, 07 Oct 2008 16:32:09 +0800
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:content-type :content-transfer-encoding; bh=F/vJccTSpM3rlJf7O1P+8+IhtDACliAH8pvoP74qQsY=; b=rihFkwXUo/JeZhCO5dr6hhgMZMYUE5DrUcW0D0LH2+LN2VVm3oVsFoUF/ElZL+Xh+g ry4+YVYzBq3y5T59kMUGl1opIbIZs8Y8Y5BPksBADPAVniLdrS52rz3lfM8CGHIGuXgQ n7PKnz47PQeEQW79czcSE12uoR2lZvB+374Ak=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; b=qwS1+XNig9cIJ2kudJBwvaQHNYAvWxNMgA1Sg+tZ0hjyvMcIrEkPmmLQ6UNZUZXFzf lfui0gH9OjZZUhdqbYI+9lLHGARlz76p9kBp58KzWbYKkAOjTI2Xi5GZfxhaZN0+Niyk yabaVjr5kVnpmoG8jOZ2Kg2LJSp11eunzS3S0=
- List-help: <mailto:bugtraq-help@securityfocus.com>
- List-id: <bugtraq.list-id.securityfocus.com>
- List-post: <mailto:bugtraq@securityfocus.com>
- List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
- List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
- Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
- User-agent: Thunderbird 2.0.0.14 (Windows/20080421)
Brief from my Twitter:
The effect is exposing any location, incl your browsing
history(about:cache etc) 04:54 AM October 05, 2008 from web
Workaround: Do not use Firefox to open HTM/HTML - not from RAR package,
not from remote Windows share folder, not from local, etc. 04:36 AM
October 05, 2008 from web
Some details from my blog:
* Also works on Firefox 3.0.3
* Also works on Firefox 3.0.2
...
For Firefox, location is wrong when dot URL shortcut is launched by HTML
elements. Slightly variant from CVE-2008-2810 which is about command
line and only fixed in that perspective.
...
__________
Complete details and demo are available at
http://liudieyu0.blog124.fc2.com/blog-entry-6.html