Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
From: Peter Moody (peter_at_ucsc.edu)
Date: 12/11/03
- Previous message: ldreamer: "[Full-Disclosure] sharing ssh session"
- In reply to: William Warren: "Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity"
- Next in thread: Frank Knobbe: "RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: William Warren <hescominsoon@trifles.com> Date: Thu, 11 Dec 2003 14:24:26 -0800
On Thu, 2003-12-11 at 12:55, William Warren wrote:
> mozilla 1.6a
>
> http://www.microsoft.com%01@slashdot.org/
> (that is in the address bar) and slashdot comes up in the browser window..
in 1.6b slashdot is downloaded/rendered and
http://www.microsoft.com%01@slashdot.org/
is displayed in the address bar.
-Peter
-- Peter Moody <peter@ucsc.edu> Information Security Administrator 831/459.5409 Communications and Technology Services. UC, Santa Cruz. http://security.ucsc.edu/pgp/peter.moody.pub :wq
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- application/pgp-signature attachment: This is a digitally signed message part
- Previous message: ldreamer: "[Full-Disclosure] sharing ssh session"
- In reply to: William Warren: "Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity"
- Next in thread: Frank Knobbe: "RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
Loading
