Re: Web Browsers vulnerable to the Extended HTML Form Attack (IE and OPERA)

From: Random Chaos (randomchaosat_private)
Date: Thu Feb 14 2002 - 07:06:49 PST

Next message: Edward Jones: "I am the Originator of the Graduate Student Survey"

Previous message: Joshua Wright: "SNMP vul, Cisco routers, DoS without a community string possible?"
In reply to: Patrick Kuiper: "Re: Web Browsers vulnerable to the Extended HTML Form Attack (IE and OPERA)"
Next in thread: Olivier Faurax: "Re: Web Browsers vulnerable to the Extended HTML Form Attack (IE and OPERA)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Likewise for Netscape 6.2.1 for linux.

Opera 6.0 Technology Preview 2 & 3 for linux do not have any such dialog and
attempt to connect to whatever port is specified.

Random Chaos

Patrick Kuiper wrote:

 > Netscape® Communicator 4.78 is giving the same error
 >
 >
 >>>Exploit Example.
 >>>available at http://eyeonsecurity.net/advisories/showMyCookie.html
 >>>
 >>FYI: Mozilla 0.9.8+ gives an alert:
 >>"Access to the port number given has been disabled for security reasons."
 >>
 >
 > Cu Patrick
 >
 >

Next message: Edward Jones: "I am the Originator of the Graduate Student Survey"
Previous message: Joshua Wright: "SNMP vul, Cisco routers, DoS without a community string possible?"
In reply to: Patrick Kuiper: "Re: Web Browsers vulnerable to the Extended HTML Form Attack (IE and OPERA)"
Next in thread: Olivier Faurax: "Re: Web Browsers vulnerable to the Extended HTML Form Attack (IE and OPERA)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Feb 14 2002 - 14:04:23 PST