Re: Web Browsers vulnerable to the Extended HTML Form Attack (IE and OPERA)

From: Olivier Faurax (Olivier.Faurax@esil.univ-mrs.fr)
Date: 02/07/02


Date: Thu, 07 Feb 2002 19:01:16 +0100
From: Olivier Faurax <Olivier.Faurax@esil.univ-mrs.fr>
To: Mark Renouf <mark@tweakt.net>

Mark Renouf wrote:
>
> obscure wrote:
>
> >
> >Exploit Example.
> >
> >available at http://eyeonsecurity.net/advisories/showMyCookie.html
> >
> FYI: Mozilla 0.9.8+ gives an alert:
> "Access to the port number given has been disabled for security reasons."

idem with Netscape 4.77

--
"Computers are like air conditionners, they stop working properly when
you open windows."
Olivier Faurax, Elève ESIL Dpt Informatique (Promo 2004)
email : Olivier.Faurax@esil.univ-mrs.fr
web   : http://www.esil.univ-mrs.fr/~ofaurax