ip-check.info: the 'window.name' attribute is traceable across sites
On a fresh install of tor-browser-gnu-linux-x86_64-2.3.25-1-dev-en-US and going to http://ip-check.info/?lang=en reveals that (when javascript is enabled, which is the default) the window.name attribute is traceable across sites.
This issue was first seen in 'tor-browser-gnu-linux-x86_64-2.2.39-5-dev-en-US'. It did not seem to occur in versions prier to 'tor-browser-gnu-linux-x86_64-2.2.39-5-dev-en-US'.
Attribute:Tab name Value:"window.name" is traceable. Your unique ID: 2372370 Rating:bad
Pop-up help text when hovering over the 'Attribute' text: Using the attribute "window.name", a website may give the current tab a name. The attribute "window.name" may get misued for marking your current tab. It remains the same over several websites until a site you visit sets a new value.
Pop-up help text when hovering over the 'Value' text: Recommended: The name of the current tab should be deleted once you are surfing to a new website domain.
Firefox: Use the JonDoFox or Torbutton profile. Chrome: Use the extension "window name eraser".
You may delete its value also by closing this browser tab.
Pop-up help text when hovering over the 'Rating' text: Your browser may get traced over your current tab.
Reproduction: 0) download and extract 'tor-browser-gnu-linux-x86_64-2.2.39-5-dev-en-US' or any Tor Browser Bundle released since that version.
- Start up Tor Browser with 'start-tor-browser' in 'tor-browser_en-US'
- Proceed to: 'http://ip-check.info/?lang=en'
- Click on the text "START TEST! Please click here to start the full anonymity test IP check and see all results."
- Examine the attribute 'Tab name'.
Note that in previous versions of the Tor Browser Bundle this attribute is not traceable.
Trac:
Username: WDXfjqDN4QKGYrlY