You are here: Known Vulnerabilities in Mozilla Products (Firefox 1.0.3) > MFSA 2005-35

Mozilla Foundation Security Advisory 2005-35

Title: Showing blocked javascript: popup uses wrong privilege context
Severity: Moderate
Reporter: Doron Rosenberg
Products: Firefox, Mozilla Suite

Fixed in: Firefox 1.0.3
  Mozilla Suite 1.7.7

Description

When a popup is blocked the user is given the ability to open that one popup through the popup-blocking status bar icon and, in Firefox, through the infobar. If the popup URL were javascript: selecting "Show javascript:..." from the infobar or popup blocking status bar icon menus would run the javascript with elevated privileges which could be used to install malicious software.

Workaround

Do not show blocked popups, or, if you must, show individual popups only if the menu item starts with "Show http://" or "Show https://"

References