[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <5559abfc0610270335k62297bdve52705cb5e855cb6@mail.gmail.com>
Date: Fri, 27 Oct 2006 19:35:03 +0900
From: "HASEGAWA Yosuke " <yosuke.hasegawa@...il.com>
To: bugtraq@...urityfocus.com, Full-Disclosure@...ts.grok.org.uk,
NTBugtraq@...tserv.ntbugtraq.com
Subject: Re: [Full-disclosure] IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006
Hi.
On 10/27/06, LIUDIEYU dot COM <liudieyu.com@...il.com> wrote:
> Upon IE7 release, Secunia published SA22477 titled `Internet Explorer
> 7 "mhtml:" Redirection Information Disclosure`.
It seems to be able to make redirecting with mhtml fail by returning
the response by 201 or 202.
There for, It is possible for this to prevent trying to steal the
contents of your server via mhtml redirection.
--
HASEGAWA Yosuke
yosuke.hasegawa@...il.com
Powered by blists - more mailing lists