De-anonymizer

From: Berend-Jan Wever (skylined@edup.tudelft.nl)
Date: 04/23/02

• Previous message: GreyMagic Software: "RE: Cross site scripting in almost every mayor website"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: 23 Apr 2002 10:26:12 -0000
From: Berend-Jan Wever <skylined@edup.tudelft.nl>
To: bugtraq@securityfocus.com

('binary' encoding is not supported, stored as-is)

I have "hacked" my way out of anonymizer with Cross-site
scripting:
http://anon.free.anonymizer.com/http://spoor12.edup.tudelft.
nl/SkyLined/docs/de_anonymizer.labs.html

It uses a <SCRIPT> tag without a closing </SCRIPT> tag to
fool anonymizer into allowing an onError event to pass
filters. This allows me to execute javascript with obvious
security breaches.

Anonymizer was informed of the situation.

Kind regards,

Berend-Jan Wever
http://spoor12.edup.tudelft.nl

---

• Previous message: GreyMagic Software: "RE: Cross site scripting in almost every mayor website"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > bugtraq  > 2002-04