Date: 21 May 2006 13:20:48 -0000
From: [email protected]
To: [email protected]Subject: Firefox 1.5.0.3 Flaw - Page can obtain path to Mozilla
installation or profile by examining JavaScript exceptions
X-Virus-Scanned: antivirus-gw at tyumen.ru
if the exception raises in some extension in the user profile and the page can catch path to the user profile and so a remote attacker will know the user login
PoC: https://bugzilla.mozilla.org/attachment.cgi?id=164547
