Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006
From: "HASEGAWA Yosuke " <yosuke.hasegawa () gmail com>
Date: Fri, 27 Oct 2006 19:35:03 +0900


On 10/27/06, LIUDIEYU dot COM <liudieyu.com () gmail com> wrote:
Upon IE7 release, Secunia published SA22477 titled `Internet Explorer
7 "mhtml:" Redirection Information Disclosure`.

It seems to be able to make redirecting with mhtml fail by returning
the response by 201 or 202.
There for, It is possible for this to prevent trying to steal the
contents of your server via mhtml redirection.

    yosuke.hasegawa () gmail com

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]