Issue metadata
Sign in to add a comment
|
Address bar spoofing with drag/drop and long response time.
Reported by
mishra.d...@gmail.com,
Sep 11 2017
|
||||||||||||||||||||||||
Issue descriptionUserAgent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:52.0) Gecko/20100101 Firefox/52.0 Steps to reproduce the problem: Upstream/Reference Bug : 660498 FYI looks like this still works. The attached exploit still WFM in,61.0.3163.79 (Official Build) (64-bit) What is the expected behavior? What went wrong? Request you to please have a look, attaching Video POC for same. Did this work before? N/A Chrome version: 61.0.3163.79 (Official Build) (64-bit) (cohort: 61_Win_79) Channel: stable OS Version: 6.1 (Windows 7, Windows Server 2008 R2) Flash Version: 24.0.0.189 internal-not-yet-present
,
Sep 11 2017
I believe this is exactly the same as Issue 698156 .
,
Sep 11 2017
Agreed, this is the same as issue 698156 , which is to say, it's like the original report in issue 660498 (before the no-user-interaction version was added in comment 5). See https://bugs.chromium.org/p/chromium/issues/detail?id=698156#c8 for explanation.
,
Dec 19 2017
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||||
Comment 1 by mishra.d...@gmail.com
, Sep 11 2017235 KB
235 KB Download