Re: Microsoft Security Bulletin MS01-055

From: CDE Francis (fuyat_private)
Date: Fri Nov 09 2001 - 12:58:34 PST

Next message: Joao Pedro Goncalves: "Imp Webmail session hijacking vulnerability"

Previous message: Nick FitzGerald: "Re: Microsoft IE cookies readable via about: URLS"
Next in thread: Tobias DiPasquale: "Re: Microsoft Security Bulletin MS01-055"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

At 6:14 PM -0800 2001/11/08, Microsoft Product Security wrote:
>Software:   Internet Explorer
>Impact:     Exposure and altering of data in cookies
>Max Risk:   High

At risk of sounding petulant, I'd like to mention something overlooked
  by Microsoft, Bugtraq, etc. Microsoft Internet Explorer for (classic)
  MacOS appears NOT to be vulnerable to this exploit. AFAICT, it will
  not run scripts of any kind embedded in an about: URL.

Could someone verify the status of IE on OS X, Solaris or HP-UX?
  http://www.google.com/search?q=Internet+Explorer+Solaris+HP-UX

-F.

Next message: Joao Pedro Goncalves: "Imp Webmail session hijacking vulnerability"
Previous message: Nick FitzGerald: "Re: Microsoft IE cookies readable via about: URLS"
Next in thread: Tobias DiPasquale: "Re: Microsoft Security Bulletin MS01-055"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Nov 09 2001 - 16:12:21 PST