Mozilla Privacy Bug
Saturday September 14th, 2002
Yesterday, ZDNet UK News reported that Mozilla has a privacy flaw involving HTTP referers. The flaw can be exploited using the
The bug was filed in Bugzilla as bug 145579 on Sunday 19th May, with the more serious
UPDATE! Bug 145579 has now been made public.
ANOTHER UPDATE! A fix has been checked in to the trunk. A patch for the 1.0 branch will follow shortly.
YET ANOTHER UPDATE! A patch has now been checked in to the 1.0 branch.
#67 Mozilla Privacy...
Tuesday October 15th, 2002 8:04 AM
You are replying to this message
Unfortunately, a major credit card authorization company validates the referrer field prior to authorizing a transaction. I know this is unreliable because the referrer field can be easily manipulated. However, some of my customers are getting white screens with an error message "invalid referrer" because of this bug.