Re: IE https certificate attack

From: e-matters GmbH - Securityteam (security@e-matters.de)
Date: Mon Dec 24 2001 - 12:44:56 PST

Next message: bugzillaat_private: "[RHSA-2001:162-04] Updated namazu packages are available"

Previous message: Dimitris Giannitsaros: "Re: IE https certificate attack"
In reply to: Dimitris Giannitsaros: "Re: IE https certificate attack"
Next in thread: Geoff Joy: "Re: IE https certificate attack"
Next in thread: Przemyslaw Frasunek: "Re: IE https certificate attack"
Reply: Geoff Joy: "Re: IE https certificate attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> I use IE 5.00.3315.1000 / Win2k Pro SP2 and no other patches. I am not
> vulnerable: IE correctly displays the warning ("Security Alert") saying
that

Yeah, it seems that people with IE 5.00 that have not installed any of the
MS "security"
patches are not vulnerable. But latest patched IE 5.00 are vulnerable.

Stefan Esser

Next message: bugzillaat_private: "[RHSA-2001:162-04] Updated namazu packages are available"
Previous message: Dimitris Giannitsaros: "Re: IE https certificate attack"
In reply to: Dimitris Giannitsaros: "Re: IE https certificate attack"
Next in thread: Geoff Joy: "Re: IE https certificate attack"
Next in thread: Przemyslaw Frasunek: "Re: IE https certificate attack"
Reply: Geoff Joy: "Re: IE https certificate attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Dec 24 2001 - 17:38:48 PST