Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Yet another IE aperture
From: Aviv Raff <avivra () gmail com>
Date: Sat, 9 Oct 2004 13:21:00 +0200

By opening html in IE it is possible to read at least well formed xml from
arbitrary servers. The info then may be transmitted.

Can you clarify what is the security issue with reading information of
other servers from the web browser?

Am I missing the point here?

-- Aviv Raff

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]