[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <Pine.LNX.4.58.0702261910220.21707@dione>
Date: Mon, 26 Feb 2007 19:11:15 +0100 (CET)
From: Michal Zalewski <lcamtuf@...ne.ids.pl>
To: Jeffrey Katz <jdkatz23@...il.com>
Cc: bugtraq@...urityfocus.com, full-disclosure@...ts.grok.org.uk,
security@...illa.org
Subject: Re: MSIE7 browser entrapment vulnerability (probably Firefox, too)
On Fri, 23 Feb 2007, Jeffrey Katz wrote:
> Just checked on IE 7.0.5730.11 -- doesn't exhibit problem.
Most certainly does; you might have scripting disabled, or be
experiencing some other anomaly, but for much of the population, the
attack works as advertised on that version.
/mz
Powered by blists - more mailing lists