Closed
Bug 56458
Opened 24 years ago
Closed 24 years ago
"submit" button doesn't do anything
Categories
(Core :: Security, defect, P3)
Tracking
()
People
(Reporter: bob.broughton, Assigned: security-bugs)
References
()
Details
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (Windows; U; WinNT4.0; en-US; m18) Gecko/20001010
BuildID: 2000101014
See "steps to reproduce"
Reproducible: Always
Steps to Reproduce:
1. Enter anything at all in the "login id" and "password" fields.
2. Click "submit".
Actual Results: Nothing happens.
Expected Results: Should go to another page.
The "clear" and "change login password" buttons work OK.
Comment 1•24 years ago
|
||
send over to component HTML Form Controls
Assignee: mjudge → rods
Component: Selection → HTML Form Controls
QA Contact: blakeross → bsharma
Comment 2•24 years ago
|
||
I think this might be an rtm bug, but I am still investigating.
Comment 3•24 years ago
|
||
I have saved the pages out to disk (the best I could) and I am not getting the
same error. I think it has to do with accessing script across frame boundaries.
Here is the error running in friday's trunk build, in mozilla:
JavaScript error:
https://tdaccess37.tdbank.ca/login2.asp line 59:
JavaScript error:
line 0: uncaught exception: [Exception... "Access to property denied" code: "1
010" nsresult: "0x805303f2 (NS_ERROR_DOM_PROP_ACCESS_DENIED)" location: "https:
//tdaccess37.tdbank.ca/login2.asp Line: 59"]
Basically, what is happening is they are loading various files in different
frames in the frameset. Some of the files are script only and are accessed from
one document to another.I think the error maybe in this fundtion. "confirmLogin"
is called when the submit button is pressed. I notice that no actual "submit"
call is being made, because I set a breakpoint in nsFormFrame::OnSubmit.
function confirmLogin(formObject,formConnect)
{
if (top.frames[0].CheckTransactionInProgress())
{
if (top.frames[0].emptyField(formObject.uname))
{
alert("You must enter a User ID.");
} else if (top.frames[0].emptyField(formObject.password))
{
alert("You must enter a password.");
}
else if ((formObject.password.value.length < 5 ) ||
(formObject.password.value.length > 8))
{
alert("Either your Login ID or Password is
invalid.\nPlease Try Again.");
} else
{
if (docheck(formObject.uname.value) == 1 ||
docheck(formObject.password.value) == 1)
{
alert("Either your Login ID or Password is
invalid.\nPlease Try Again.");
}else{
saveConnectID(formObject.uname.value,formConnect);
top.frames[0].setTransactionInProgress( "TRUE"
);
top.frames[6].document.Logon.submit();
}
}
}
}
Comment 5•24 years ago
|
||
The "Access to property denied" message indicates that the script is stopping
execution due to a security violation. Handing this over to Security to verify
that we're doing the right thing - also CC'ing jst since it's DOM access.
Assignee: pollmann → mstoltz
Component: HTML Form Controls → Security: General
Assignee | ||
Comment 6•24 years ago
|
||
This issue came up as bug 45099, and I marked it WONTFIX. The tdwaterhouse.ca
site calls javascript functions on a frame loaded from a different host from the
calling frame. In this case, of course, both hosts are owned by tdwaterhouse,
but nonetheless, we don't allow this. We're much stricter in this regard now
than 4.x; I'm not sure about IE. This is the only site I have seen so far which
is broken by our restrictive security policy; is it worth relaxing the policy
for this one site? Does anyone know of other sites with this problem? The
workaround for the site is to put both hosts under the same domain and set
document.domain to the common domain suffix on both pages. Many sites work this
way, such as http://www.bmwusa.com .
*** This bug has been marked as a duplicate of 45099 ***
Status: NEW → RESOLVED
Closed: 24 years ago
Resolution: --- → DUPLICATE
Comment 7•24 years ago
|
||
Marking VERIFIED DUPLICATE per Mitch's comments & 45099
Status: RESOLVED → VERIFIED
You need to log in
before you can comment on or make changes to this bug.
Description
•