Firewall Wizards: Re: Applications Proxies

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Firewall Wizards mailing list archives

Re: Applications Proxies

From: Gary Flynn <flynngn () jmu edu>
Date: Fri, 21 Dec 2001 07:47:33 -0500

Jeff Newton wrote:


Would a HTTP proxy defend against the latest Microsoft IE vulnerabilty
(MS01-058) that downloads and executes code due to modifications of
content-disposition and content-type?


I would think it could compare the name= field against the
content-type and block responses that don't match.

-- 
Gary Flynn
Security Engineer - Technical Services
James Madison University

Please R.U.N.S.A.F.E.
http://www.jmu.edu/computing/runsafe
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards

By Date By Thread

Current thread:

Applications Proxies Oscar Batyrbaev (Dec 19)
- Re: Applications Proxies Paul Robertson (Dec 20)
  - Re: Applications Proxies Jeff Newton (Dec 20)
    - Re: Applications Proxies Gary Flynn (Dec 22)