Bugtraq: Re: 'cross site scripting' CERT advisory and MS

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: 'cross site scripting' CERT advisory and MS

From: rishi () UDEL EDU (Rishi Lee Khan)
Date: Mon, 14 Feb 2000 20:57:25 -0500


There is an easy way to open a web page using and email client using HTML
parsing ... simply put in the <head> tag <meta http-equiv="REFRESH"
content="0;URL=http://www.yourpagehere.com";>

  -Rishi

Marc Slemko wrote:

Also note that if there is any way to get Outlook Express to open a new IE
window with a document in automatically when it loads an email, then you
would be vulnerable if you only disabled scripting, etc. for mail and not
for "normal" web access.  Is there a way to do this?  I don't know of any.
But again, things are complex enough that I'm quite unwilling to say there
is no way to do it.

So while disabling all the "features" that you can when reading HTML mail
is definitely recommended and protects you against a lot of attacks, it is
not a complete solution.  I seriously doubt that all the ways of
exploiting this issue without using scripting languages have been
discovered.

Not that I have seen anyone publicly posting exploits that do things in
any of these ways (or any other way...), which I find odd, since there are
lots of vulnerable sites out there, and some vulnerabilities that are
pretty serious.

By Date By Thread

Current thread:

Re: Evil Cookies., (continued)