[Webkit-unassigned] [Bug 15936] Overly permissive frame navigation allows password theft
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Nov 27 09:31:21 PST 2007
http://bugs.webkit.org/show_bug.cgi?id=15936
------- Comment #4 from sam at webkit.org 2007-11-27 09:31 PDT -------
I allowed navigating the ancestor frame because when I tested IE I noticed it
allowed the parent frame (in another domain) to be navigated. It seems my
testing and analysis was too limited and the behavior of IE is actually that
only the frame at the top of the hierarchy is allowed to be navigated. Does
this match your findings?
--
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list