Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

fulldisclosure logo Full Disclosure mailing list archives

Re: Google / GMail bug, all accounts vulnerable
From: Nick FitzGerald <nick () virus-l demon co uk>
Date: Wed, 12 Dec 2007 16:46:36 +1300
Kristian Erik Hermansen wrote:


... even if handled quite differently between browser types/versions.


Bingo to coderman, the only security dude here who gets it.  You would
be surprised the number of ridiculous personal emails I got regarding
this issue.  Crowd SuRFing is here to stay...


So does the simple expedient of setting browser.chrome.favicons to 
false "fix" this for FF users?

Does it work in IE7's tabbed browsing?


Regards,

Nick FitzGerald

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]