[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #11433 [Firefox Patch Issues]: window.sidebar.addSearchEngine leaks installation paths on OSX and Windows.

#11433: window.sidebar.addSearchEngine leaks installation paths on OSX and Windows.
----------------------------------+---------------------------
 Reporter:  arthuredelstein       |          Owner:  mikeperry
     Type:  defect                |         Status:  new
 Priority:  major                 |      Milestone:
Component:  Firefox Patch Issues  |        Version:
 Keywords:  tbb-fingerprinting    |  Actual Points:
Parent ID:                        |         Points:
----------------------------------+---------------------------
 Previously reported as part of #9308. Open ESR-24-based TBB on Windows or
 Mac, start the Web Console, and enter the line

 `window.sidebar.addSearchEngine("http://";, "http://";, null, null);`

 The resulting Exception reads
 {{{
 [Exception... "addEngine: Error adding engine:
 [Exception... "Component returned failure code: 0x804b000a
 (NS_ERROR_MALFORMED_URI) [nsIIOService.newChannelFromURI]"  nsresult:
 "0x804b000a (NS_ERROR_MALFORMED_URI)"  location: "JS frame ::
 jar:file:///Applications/TorBrowserBundle_en-
 US.app/Contents/MacOS/TorBrowser.app/Contents/MacOS/omni.ja!/components/nsSearchService.js
 :: SRCH_ENG_initFromURI :: line 1201"  data: no]"  nsresult: "0x80004005
 (NS_ERROR_FAILURE)"  location: "JS frame :: jar:file:///Applications
 /TorBrowserBundle_en-
 US.app/Contents/MacOS/TorBrowser.app/Contents/MacOS/omni.ja!/components/nsSearchService.js
 :: FAIL :: line 264"  data: no]
 }}}

 which includes the path

 `file:///Applications/TorBrowserBundle_en-
 US.app/Contents/MacOS/TorBrowser.app/Contents/MacOS/omni.ja!/components/nsSearchService.js`

 Depending on where TBB is installed, the path may include the User
 directory and thus may leak private information to client-side JS web
 code.

 Note that this bug no longer obtains in ESR-31. The bug that fixed this
 was

     "Port window.sidebar and window.external to WebIDL",
 âhttps://bugzilla.mozilla.org/show_bug.cgi?id=983920

     patch: âhttps://hg.mozilla.org/mozilla-central/rev/d9e6a6c40a57

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11433>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs