Vulnerability Development: Re: IE7 SELECT Tag

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Re: IE7 SELECT Tag

From: Stefano Zanero <s.zanero () securenetwork it>
Date: Sun, 05 Nov 2006 21:12:23 +0100

dan.ross () picbusiness com wrote:

I just installed IE7 this morning, then promptly found my first bug.


This is surely a bug, but I don't see how it would classify as a
security bug. Examples ?

Now, imagine instead of fruit, you're picking which bank account to transfer money to/from...


If a site relies on a client side script to perform anything security
sensitive, it's broken. But that's a problem of the website, not a
problem of this particulare IE7 bug.

Stefano

By Date By Thread

Current thread:

IE7 SELECT Tag dan . ross (Nov 01)
- Re: IE7 SELECT Tag Stefano Zanero (Nov 05)
- <Possible follow-ups>
- RE: IE7 SELECT Tag Damhuis Anton (Nov 02)
- RE: IE7 SELECT Tag dan . ross (Nov 02)