Firefox prompts with correct answers during online banking password recovery process
Bug #231252 reported by
Robert Persson
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| firefox-3.0 (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bug Description
Binary package hint: firefox
When a web page prompts you for the answer to a question you have previously answered, Firefox prompts you with that previous answer. This has serious security implications when it comes, for instance, to password recovery.
Example:
I forgot my online banking password yet again, so I go through the recovery process and find that Firefox tells me the answers as soon as I type the first letter. This means that anyone with physical access to the computer can change my password.
What is needed is a simple and obvious method (i.e. NOT using about:config!) to disable Firefox's memory of previously typed responses for certain pages/sites, but without disabling it globally because it is otherwise a very useful feature.
Revision history for this message
| John Vivirito (gnomefreak) wrote | #1 |
| Changed in firefox-3.0 (Ubuntu): | |
| status: | New → Invalid |
To post a comment you must log in.
More than likely a site issue or you hit remember.
Thank you for taking the time to file this bug report with us. Closing due to age. If this is still a problem in 3.0.7 please reopen this bug.
Also please reopen with all new information on how to reproduce this bug by giving us step by step instructions.
We also need what happens what is expected to happen.
To reopen the bug report you can click on the current status, under the Status column, and change the Status back to "New". Thanks again!