Do browsers allows pages loaded on one tab to access/intercept/inject data in other tabs?
Posted
by
jairo
on Super User
See other posts from Super User
or by jairo
Published on 2012-07-06T14:19:02Z
Indexed on
2012/07/06
15:18 UTC
Read the original article
Hit count: 474
I was surprised to hear from this Reuters video that it was possible for a page loaded on one tab to access and/or inject data onto another page loaded on a different tab.
TL;DW (too lazy; didn't watch) The interviewee in the video suggests that when doing online banking, the user exit his browser (thus closing all windows) and start a new browser session with just your banking page/tab open. Allegedly, malicious sites can check if you have your banking site open and inject commands onto those sites.
Can someone confirm and/or deny this claim? Is it only possible even if there is not parent/child relationship between windows/tabs?
© Super User or respective owner