[tor-bugs] #31667 [Applications]: NAvigator object leaking OS, again?

Tor Bug Tracker & Wiki blackhole at torproject.org
Sun Sep 8 15:04:49 UTC 2019


#31667: NAvigator object leaking OS, again?
------------------------------+------------------------------
 Reporter:  op_mb             |          Owner:  (none)
     Type:  defect            |         Status:  new
 Priority:  Medium            |      Component:  Applications
  Version:  Tor: unspecified  |       Severity:  Normal
 Keywords:                    |  Actual Points:
Parent ID:                    |         Points:
 Reviewer:                    |        Sponsor:
------------------------------+------------------------------
 hey all,

 tor browser version 8.5.5 in tails os, navigator object leaks OS,

 // you need to modify these
  navigator.userAgent
  navigator.appVersion
  navigator.buildID
  navigator.osCPU
  navigator.platform
 //

 here's the ticket (with pics), they redirected me to you:

 https://redmine.tails.boum.org/code/issues/16999
 (look at the pics i uploded there)

 i've read the other tickets here, about fingerprinting, point is, that,
 automated scripts will vector attacks based on platform, so this is just
 opening an attack vector

 cheers!

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/31667>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list