In yet another article that discusses Firefox’s password manager flaw, it appears that only a handful of variants of this bug are fixed, leaving a majority unfixed. That’s bad news for something we sort of thought was a done issue. I supposed it was possible this wasn’t fixed, but never bothered to look into it - it just goes to show that we need to keep pounding on these things until we can no longer find any way around the fixes.
As a side note, Robert Chapin is credited for the original vulnerability in this article, even though he was not the first person to think of it or even exploit it. Although I don’t get much credit for this one Secunia, at least, did update their advisory to at least point to my original post about this, although they still say the original advisory (months later) was found by Robert Chapin. Worse yet, that stupid RCSR (Reverse Cross Site Request) acronym lives on! Why wont it just die? It’s called XSS folks! I am doomed to disclosure obscurity on this one.
Update: Please read the comment by Gavin for more details about this. Apparently Robert Chapin’s analysis could be innacurate or at the very least mis-representing the issue. Thanks for the clarification, Gavin!