mozilla -- data: URL can inherit wrong origin after an HTTP redirect

2016-11-28T00:00:00
ID F90FCE70-ECFA-4F4D-9EE8-C476DBF4BF0E
Type freebsd
Reporter FreeBSD
Modified 2016-11-28T00:00:00

Description

The Mozilla Foundation reports:

Redirection from an HTTP connection to a data: URL assigns the referring site's origin to the data: URL in some circumstances. This can result in same-origin violations against a domain if it loads resources from malicious sites. Cross-origin setting of cookies has been demonstrated without the ability to read them.