|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] Microsoft Internet Explorer Local File Accesses Vulnerability
From: Michal Zalewski (lcamtuf
dione.ids.pl)
Date: Mon Feb 19 2007 - 16:47:47 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Tue, 20 Feb 2007, Rajesh Sethumadhavan wrote:
> Microsoft Internet Explorer is a default browser bundled with all
> versions of Microsoft Windows operating system.
Any luck with sending the data back to the attacker? SCRIPT and STYLE ones
can be used to steal data from very specifically formatted files, but
that's not a whole lot.
/mz
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]