LocalTapiola: CSRF possible when SOP Bypass/UXSS is available

2017-02-18T19:50:27
ID H1:207399
Type hackerone
Reporter bugdiscloseguys
Modified 2018-04-10T11:00:45

Description

Issue

The reporter found an edge case - almost obscure - where it was possible to build a CSRF on Internet Explorer 10/11 (Windows 7). The report was on two different domains.

Fix

There was a long wait to get this fixed. The criticality was not very high. Tokens were added to the applications to avoid CSRF.

Reasoning

Although CSRF is bad in itself, this was a rare case hence making the probability of something bad happening very small.