Re: Alert: Microsoft Security Bulletin - MS02-066

From: Lise (lise_moorveldat_private)
Date: Mon Nov 25 2002 - 07:03:41 PST

Next message: bugzillaat_private: "[Full-Disclosure] [RHSA-2002:264-05] New kernel 2.2 packages fix local denial of service issue"

Previous message: dong-h0un U: "Remote Heap malloc/free & multiple Overflow vulnerability in WSMP3."
Next in thread: GreyMagic Software: "RE: MS02-066 - fixes, gaps and incorrect statements"
Reply: GreyMagic Software: "RE: MS02-066 - fixes, gaps and incorrect statements"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

In MS02-066 Microsoft claim they've fixed several Cross Domain
Verification problems. Unfortunately, they are not really clear on
which vulnerabilities they fix. 

Does anyone know which vulnerability was meant with this:
- Frames Cross Site Scripting: CVE-CAN-2002-1187

The CVE number is reserved and doesn't provide much info, at this moment
:-/

Any references to BT/NTBT postings would by greatly appreciated.

Kind regards,

Lise

Next message: bugzillaat_private: "[Full-Disclosure] [RHSA-2002:264-05] New kernel 2.2 packages fix local denial of service issue"
Previous message: dong-h0un U: "Remote Heap malloc/free & multiple Overflow vulnerability in WSMP3."
Next in thread: GreyMagic Software: "RE: MS02-066 - fixes, gaps and incorrect statements"
Reply: GreyMagic Software: "RE: MS02-066 - fixes, gaps and incorrect statements"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Nov 25 2002 - 08:32:54 PST