[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 12 Dec 2007 16:46:36 +1300
From: Nick FitzGerald <nick@...us-l.demon.co.uk>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: Google / GMail bug, all accounts vulnerable
Kristian Erik Hermansen wrote:
> > ... even if handled quite differently between browser types/versions.
>
> Bingo to coderman, the only security dude here who gets it. You would
> be surprised the number of ridiculous personal emails I got regarding
> this issue. Crowd SuRFing is here to stay...
So does the simple expedient of setting browser.chrome.favicons to
false "fix" this for FF users?
Does it work in IE7's tabbed browsing?
Regards,
Nick FitzGerald
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists