lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
From: bitlance_3 at hotmail.com (bitlance winter)
Subject: RE: [SA14304] Internet Explorer/Outlook Express
 Status Bar Spoofing -- A joke ? 

A joke ? ;-)

Secunia says,
"It is by default possible for script code to manipulate information 
displayed in the status bar. However, an error allows manipulation of the 
status bar without using any script code (e.g. in the "Restricted sites" 
zone)."

It is important that Outlook Express users may especially trust information 
displayed in
the status bar since HTML documents are viewed in context of the
"Restricted" zone, which has scripting support disabled.

REGARDS.

--
bitlance winter

_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today - it's FREE! 
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/


Powered by blists - more mailing lists