What steps will reproduce the problem?
1. Create a simple page with the following:
<html>
<script>
for (i in top) {
try {
top[i].getClass().forName('java.lang.Runtime');
alert('vulnerable');
} catch(e) {}
}
</script>
</html>
2. Browse to this page on Google Glass
3. Observe "The page at [snip] says 'vulnerable'."
What is the expected output? What do you see instead?
The above javascript should always throw an exception (getClass() should always
return null), and never reach the alert dialog.
What version of the product are you using? On what operating system?
Google Glass XE12
Please provide any additional information below.
This is a serious issue that could allow an attacker to compromise the device.
Original issue reported on code.google.com by tim...@gmail.com on 5 Feb 2014 at 2:54
Original issue reported on code.google.com by
tim...@gmail.com
on 5 Feb 2014 at 2:54