[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-Id: <44D37E6F.000001.26652@mfront7.yandex.ru>
Date: Fri, 4 Aug 2006 21:05:51 +0400 (MSD)
From: "Pigrelax" <Pigrelax@...dex.ru>
To: full-disclosure@...ts.grok.org.uk
Cc:
Subject: Re: XSS vulnerability at Symantec.com #2
>ok, but want do you want to do with a stolen session on symantec ? get
>free AV ?
Are you really known that it can be used only for stolen session?
XSS may use for fishing, farming, XSS proxy and other..
Can we trust security company, which can not protect your corporate Web site?
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists