User: Password:
|
|
Subscribe / Log in / New account

Can't this be fixed in Firefox?

Can't this be fixed in Firefox?

Posted Jan 4, 2007 23:02 UTC (Thu) by spitzak (guest, #4593)
Parent article: A Firefox PDF plugin XSS vulnerability

Can't this be fixed by changing whatever code the Adobe plugin calls to retrieve the url? It probably should just get the data and not execute anything. It would seem this may be a good idea in general as it would fix any broken plugin that intends simply to get some info from the net and did not intend to change the state of the browser.


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds