Cross-domain data theft via script redirect error message
- December 16, 2008
- Chris Evans
- Firefox, SeaMonkey, Thunderbird
- Fixed in
- Firefox 18.104.22.168
- Firefox 22.214.171.124
- Firefox 3.0.5
- SeaMonkey 1.1.14
- Thunderbird 126.96.36.199
Google security researcher Chris Evans reported that a
website could access a limited amount of data from a different domain by
target resource containing data
context via the
window.onerror DOM API.
Update December 18, 2008: The Windows version of Firefox 188.8.131.52 was shipped without the fix for this issue (other platforms were correctly patched). Firefox 184.108.40.206 has been released on Windows to correct this oversight.